Topic: SPF Issue

[bosco555]

Hi all,
due to the amount of spam I installed the SPF mail rejection/flagging policy as per http://wiki.contribs.org/Email#SPF_mail_rejection.2Fflagging_policy.

However, now I don't receive any email at all.  Sending is no problem.  This is an sme9 in server only mode.  I have been at it all afternoon and I am at a loss..
Thank you in advance for any help.

[Stefano]

well. is there any interesting info in qpsmtpd's log?

[bosco555]

Ciao Stefano..Sorry for messing around, I had to eventually re-install....Scusa!

[HAFManny]

Got myself into the same situation, how I can restore defaults.?

Thanks for the help..


2015-03-06 12:18:50.571488500 28982 250 hyacinth.org Hi lists.illinicloud.org [209.175.164.59]; I am so happy to meet you.
2015-03-06 12:18:50.590708500 28983 dispatching HELO lists.illinicloud.org
2015-03-06 12:18:50.591609500 28983 250 hyacinth.org Hi lists.illinicloud.org [209.175.164.59]; I am so happy to meet you.
2015-03-06 12:18:50.592497500 28984 dispatching HELO lists.illinicloud.org
2015-03-06 12:18:50.593311500 28984 250 hyacinth.org Hi lists.illinicloud.org [209.175.164.59]; I am so happy to meet you.
2015-03-06 12:18:50.599709500 28985 dispatching HELO lists.illinicloud.org
2015-03-06 12:18:50.600567500 28985 250 hyacinth.org Hi lists.illinicloud.org [209.175.164.59]; I am so happy to meet you.
2015-03-06 12:18:50.607113500 28986 dispatching HELO lists.illinicloud.org
2015-03-06 12:18:50.607955500 28986 250 hyacinth.org Hi lists.illinicloud.org [209.175.164.59]; I am so happy to meet you.
2015-03-06 12:18:50.609938500 28982 dispatching MAIL FROM:<tech-geeks-bounces@tech-geeks.org>
2015-03-06 12:18:50.610166500 28982 full from_parameter: FROM:<tech-geeks-bounces@tech-geeks.org>
2015-03-06 12:18:50.611148500 Use of uninitialized value in concatenation (.) or string at /usr/share/qpsmtpd/plugins/greylisting line 222, <STDIN> line 2.
2015-03-06 12:18:50.614035500 28982 greylisting plugin (mail): using ./denysoft_greylist.dbm as greylisting database
2015-03-06 12:18:50.614037500 28982 greylisting plugin (mail): opening lockfile failed: Permission denied
2015-03-06 12:18:50.623762500 28982 getting mail from <tech-geeks-bounces@tech-geeks.org>
2015-03-06 12:18:50.623850500 28982 250 <tech-geeks-bounces@tech-geeks.org>, sender OK - how exciting to get mail from you!
2015-03-06 12:18:50.631855500 28983 dispatching MAIL FROM:<tech-geeks-bounces@tech-geeks.org>
2015-03-06 12:18:50.631857500 28984 dispatching MAIL FROM:<tech-geeks-bounces@tech-geeks.org>
2015-03-06 12:18:50.632132500 28983 full from_parameter: FROM:<tech-geeks-bounces@tech-geeks.org>
2015-03-06 12:18:50.632144500 28984 full from_parameter: FROM:<tech-geeks-bounces@tech-geeks.org>
2015-03-06 12:18:50.633688500 Use of uninitialized value in concatenation (.) or string at /usr/share/qpsmtpd/plugins/greylisting line 222, <STDIN> line 2.
2015-03-06 12:18:50.633690500 Use of uninitialized value in concatenation (.) or string at /usr/share/qpsmtpd/plugins/greylisting line 222, <STDIN> line 2.
2015-03-06 12:18:50.633691500 28984 greylisting plugin (mail): using ./denysoft_greylist.dbm as greylisting database
2015-03-06 12:18:50.633692500 28983 greylisting plugin (mail): using ./denysoft_greylist.dbm as greylisting database
2015-03-06 12:18:50.633712500 28984 greylisting plugin (mail): opening lockfile failed: Permission denied
2015-03-06 12:18:50.633713500 28983 greylisting plugin (mail): opening lockfile failed: Permission denied
2015-03-06 12:18:50.639334500 28985 dispatching MAIL FROM:<tech-geeks-bounces@tech-geeks.org>
2015-03-06 12:18:50.639556500 28985 full from_parameter: FROM:<tech-geeks-bounces@tech-geeks.org>
2015-03-06 12:18:50.640629500 Use of uninitialized value in concatenation (.) or string at /usr/share/qpsmtpd/plugins/greylisting line 222, <STDIN> line 2.
2015-03-06 12:18:50.640783500 28985 greylisting plugin (mail): using ./denysoft_greylist.dbm as greylisting database
2015-03-06 12:18:50.640868500 28985 greylisting plugin (mail): opening lockfile failed: Permission denied
2015-03-06 12:18:50.644047500 28986 dispatching MAIL FROM:<tech-geeks-bounces@tech-geeks.org>
2015-03-06 12:18:50.644322500 28986 full from_parameter: FROM:<tech-geeks-bounces@tech-geeks.org>
2015-03-06 12:18:50.645391500 Use of uninitialized value in concatenation (.) or string at /usr/share/qpsmtpd/plugins/greylisting line 222, <STDIN> line 2.
2015-03-06 12:18:50.645550500 28986 greylisting plugin (mail): using ./denysoft_greylist.dbm as greylisting database
2015-03-06 12:18:50.645629500 28986 greylisting plugin (mail): opening lockfile failed: Permission denied
2015-03-06 12:18:50.645844500 28984 getting mail from <tech-geeks-bounces@tech-geeks.org>
2015-03-06 12:18:50.645924500 28984 250 <tech-geeks-bounces@tech-geeks.org>, sender OK - how exciting to get mail from you!
2015-03-06 12:18:50.659336500 28983 getting mail from <tech-geeks-bounces@tech-geeks.org>
2015-03-06 12:18:50.660306500 28985 getting mail from <tech-geeks-bounces@tech-geeks.org>
2015-03-06 12:18:50.660423500 28983 250 <tech-geeks-bounces@tech-geeks.org>, sender OK - how exciting to get mail from you!
2015-03-06 12:18:50.660632500 28985 250 <tech-geeks-bounces@tech-geeks.org>, sender OK - how exciting to get mail from you!
2015-03-06 12:18:50.662957500 28982 dispatching RCPT TO:<mpoyer@hyacinth.org>
2015-03-06 12:18:50.662959500 28982 450 No plugin decided if relaying is allowed
2015-03-06 12:18:50.663143500 28986 getting mail from <tech-geeks-bounces@tech-geeks.org>
2015-03-06 12:18:50.663219500 28986 250 <tech-geeks-bounces@tech-geeks.org>, sender OK - how exciting to get mail from you!
2015-03-06 12:18:50.682526500 28984 dispatching RCPT TO:<mpoyer@hyacinth.org>
2015-03-06 12:18:50.682528500 28984 450 No plugin decided if relaying is allowed
2015-03-06 12:18:50.697285500 28983 dispatching RCPT TO:<mpoyer@hyacinth.org>
2015-03-06 12:18:50.697287500 28983 450 No plugin decided if relaying is allowed
2015-03-06 12:18:50.700295500 28985 dispatching RCPT TO:<mpoyer@hyacinth.org>
2015-03-06 12:18:50.700917500 28985 450 No plugin decided if relaying is allowed
2015-03-06 12:18:50.702517500 28982 dispatching RSET
2015-03-06 12:18:50.702518500 28982 250 OK
2015-03-06 12:18:50.702611500 28986 dispatching RCPT TO:<mpoyer@hyacinth.org>
2015-03-06 12:18:50.703561500 28986 450 No plugin decided if relaying is allowed
2015-03-06 12:18:50.730252500 28984 dispatching RSET
2015-03-06 12:18:50.730254500 28984 250 OK
2015-03-06 12:18:50.733442500 28983 dispatching RSET
2015-03-06 12:18:50.733443500 28983 250 OK
2015-03-06 12:18:50.737469500 28986 dispatching RSET
2015-03-06 12:18:50.737870500 28985 dispatching RSET
2015-03-06 12:18:50.737871500 28985 250 OK
2015-03-06 12:18:50.737941500 28986 250 OK
2015-03-06 12:18:51.150065500 28987 check_earlytalker plugin (connect): remote host said nothing spontaneous, proceeding
2015-03-06 12:18:51.151505500 28987 220 hafall.hyacinth.org ESMTP
2015-03-06 12:18:51.165598500 28987 dispatching EHLO p1-182101.e.spiritairlines.com
2015-03-06 12:18:51.167170500 28987 250-hyacinth.org Hi p1-182101.e.spiritairlines.com [72.166.182.101]
2015-03-06 12:18:51.167171500 28987 250-PIPELINING
2015-03-06 12:18:51.167171500 28987 250-8BITMIME
2015-03-06 12:18:51.167172500 28987 250-SIZE 30000000
2015-03-06 12:18:51.167172500 28987 250 STARTTLS
2015-03-06 12:18:51.179887500 28987 dispatching MAIL FROM:<deals@p.spiritairlines.com> BODY=8BITMIME
2015-03-06 12:18:51.180097500 28987 full from_parameter: FROM:<deals@p.spiritairlines.com> BODY=8BITMIME
2015-03-06 12:18:51.181072500 Use of uninitialized value in concatenation (.) or string at /usr/share/qpsmtpd/plugins/greylisting line 222, <STDIN> line 2.
2015-03-06 12:18:51.181216500 28987 greylisting plugin (mail): using ./denysoft_greylist.dbm as greylisting database
2015-03-06 12:18:51.181296500 28987 greylisting plugin (mail): opening lockfile failed: Permission denied
2015-03-06 12:18:51.191588500 28987 getting mail from <deals@p.spiritairlines.com>
2015-03-06 12:18:51.191638500 28987 250 <deals@p.spiritairlines.com>, sender OK - how exciting to get mail from you!
2015-03-06 12:18:51.191762500 28987 dispatching RCPT TO:<kobrien@hyacinth.org>
2015-03-06 12:18:51.192608500 28987 450 No plugin decided if relaying is allowed
2015-03-06 12:18:51.192670500 28987 dispatching DATA
2015-03-06 12:18:51.193038500 28987 503 RCPT first
2015-03-06 12:18:51.223025500 28981 check_earlytalker plugin (connect): remote host said nothing spontaneous, proceeding
2015-03-06 12:18:51.224452500 28981 220 hafall.hyacinth.org ESMTP
2015-03-06 12:18:51.275532500 28987 dispatching QUIT
2015-03-06 12:18:51.275752500 28987 221 hyacinth.org closing connection. Have a wonderful day.
2015-03-06 12:18:51.275828500 28987 click, disconnecting
2015-03-06 12:18:51.460060500 28981 dispatching EHLO various.pctamashiro.com
2015-03-06 12:18:51.461507500 28981 250-hyacinth.org Hi various.pctamashiro.com [185.44.107.125]
2015-03-06 12:18:51.461531500 28981 250-PIPELINING
2015-03-06 12:18:51.461555500 28981 250-8BITMIME
2015-03-06 12:18:51.461580500 28981 250-SIZE 30000000
2015-03-06 12:18:51.461604500 28981 250 STARTTLS
2015-03-06 12:18:51.497084500 1962 cleaning up after 28987
2015-03-06 12:18:51.635951500 28988 Accepted connection 9/40 from 208.85.50.57 / mail5605.remedyhealthmedia.mkt6204.com
2015-03-06 12:18:51.636131500 28988 Connection from mail5605.remedyhealthmedia.mkt6204.com [208.85.50.57]
2015-03-06 12:18:51.638506500 28988 tls plugin (init): ciphers: HIGH:!SSLv2:!ADH:!aNULL:!MD5:!RC4
2015-03-06 12:18:51.641287500 28988 tls plugin (init): ciphers: HIGH:!SSLv2:!ADH:!aNULL:!MD5:!RC4
2015-03-06 12:18:51.647372500 28988 FATAL PLUGIN ERROR [peers]:  Plugin score not found in our plugin dirs (/usr/share/qpsmtpd/plugins) at /usr/share/perl5/vendor_perl/Qpsmtpd.pm line 404.
2015-03-06 12:18:51.647375500

[Stefano]

just rollback your editing

[HAFManny]

rollback. ?   you mean erase each command.?

oh God  what about backup and restore to another SME.?   

does it will move all the errors or just data.?

Thanks a lot....

[Stefano]

Code: [Select]

rm -rf /etc/e-smith/templates-custom/var/service/qpsmtpd/config/peers/0/30spf
/sbin/e-smith/expand-template /var/service/qpsmtpd/config/peers/0
signal-event email-update


[HAFManny]

Stefano:

I owe you an Orangina Box.....

What about the PLUGIN Fatal error.?

[Stefano]

do you still have the error in your logs?

[HAFManny]

Stefano:

Still can receive emails, and My last resort will be to backup and restore to Another Server..
can send and receive inside domain, but from outside nothing is coming....

here's the latest logs.

2015-03-06 13:45:24.569409500 5882 tls plugin (unrecognized_command): TLS setup returning
2015-03-06 13:45:24.633841500 5881 getting mail from <bounce_190474.4445834.2840277.119040.m.2d6d01e0@bounce.coremotivesmarketing.com>
2015-03-06 13:45:24.633895500 5881 250 <bounce_190474.4445834.2840277.119040.m.2d6d01e0@bounce.coremotivesmarketing.com>, sender OK - how exciting to get mail from you!
2015-03-06 13:45:24.634024500 5881 dispatching RCPT TO:<jmccathern@hyacinth.org>
2015-03-06 13:45:24.634877500 5881 450 No plugin decided if relaying is allowed
2015-03-06 13:45:24.634939500 5881 dispatching DATA
2015-03-06 13:45:24.635317500 5881 503 RCPT first
2015-03-06 13:45:24.685521500 5882 dispatching EHLO smrelay4.las.expertcity.com
2015-03-06 13:45:24.686097500 5882 250-hyacinth.org Hi smrelay4.las.expertcity.com [216.219.119.8]
2015-03-06 13:45:24.686123500 5882 250-PIPELINING
2015-03-06 13:45:24.686162500 5882 250-8BITMIME
2015-03-06 13:45:24.686171500 5882 250-SIZE 30000000
2015-03-06 13:45:24.686192500 5882 250 AUTH PLAIN LOGIN
2015-03-06 13:45:24.727749500 5881 dispatching QUIT
2015-03-06 13:45:24.727750500 5881 221 hyacinth.org closing connection. Have a wonderful day.
2015-03-06 13:45:24.727751500 5881 click, disconnecting
2015-03-06 13:45:24.784843500 5882 dispatching MAIL FROM:<customercare@gototraining.com>
2015-03-06 13:45:24.785006500 5882 full from_parameter: FROM:<customercare@gototraining.com>
2015-03-06 13:45:24.785958500 Use of uninitialized value in concatenation (.) or string at /usr/share/qpsmtpd/plugins/greylisting line 222.
2015-03-06 13:45:24.786104500 5882 greylisting plugin (mail): using /var/lib/qpsmtpd/greylisting/denysoft_greylist.dbm as greylisting database
2015-03-06 13:45:24.787348500 5882 greylisting plugin (mail): ts: Fri Mar  6 13:45:23 2015, now: Fri Mar  6 13:45:24 2015
2015-03-06 13:45:24.787441500 5882 greylisting plugin (mail): key 216.219.119.8 is white, 17 deliveries
2015-03-06 13:45:24.838112500 5883 check_earlytalker plugin (connect): remote host said nothing spontaneous, proceeding
2015-03-06 13:45:24.838114500 5883 220 hafall.hyacinth.org ESMTP
2015-03-06 13:45:24.842825500 5882 getting mail from <customercare@gototraining.com>
2015-03-06 13:45:24.842874500 5882 250 <customercare@gototraining.com>, sender OK - how exciting to get mail from you!
2015-03-06 13:45:24.867753500 1962 cleaning up after 5877
2015-03-06 13:45:24.867851500 1962 cleaning up after 5879
2015-03-06 13:45:24.867899500 1962 cleaning up after 5880
2015-03-06 13:45:24.867958500 1962 cleaning up after 5881
2015-03-06 13:45:24.877867500 5886 Accepted connection 12/40 from 165.230.156.116 / ssw-mail.rutgers.edu
2015-03-06 13:45:24.878037500 5886 Connection from ssw-mail.rutgers.edu [165.230.156.116]
2015-03-06 13:45:24.880131500 5886 tls plugin (init): ciphers: HIGH:!SSLv2:!ADH:!aNULL:!MD5:!RC4
2015-03-06 13:45:24.883830500 5886 tls plugin (init): ciphers: HIGH:!SSLv2:!ADH:!aNULL:!MD5:!RC4
2015-03-06 13:45:24.889743500 5886 FATAL PLUGIN ERROR [peers]:  Plugin score not found in our plugin dirs (/usr/share/qpsmtpd/plugins) at /usr/share/perl5/vendor_perl/Qpsmtpd.pm line 404.
2015-03-06 13:45:24.889746500
2015-03-06 13:45:24.890907500 5886 tls plugin (init): ciphers: HIGH:!SSLv2:!ADH:!aNULL:!MD5:!RC4
2015-03-06 13:45:24.893837500 5886 FATAL PLUGIN ERROR [peers]:  Plugin score not found in our plugin dirs (/usr/share/qpsmtpd/plugins) at /usr/share/perl5/vendor_perl/Qpsmtpd.pm line 404.
2015-03-06 13:45:24.893839500
2015-03-06 13:45:24.933377500 5883 dispatching EHLO smrelay4.las.expertcity.com
2015-03-06 13:45:24.934805500 5883 250-hyacinth.org Hi smrelay4.las.expertcity.com [216.219.119.8]
2015-03-06 13:45:24.934829500 5883 250-PIPELINING
2015-03-06 13:45:24.934853500 5883 250-8BITMIME
2015-03-06 13:45:24.934878500 5883 250-SIZE 30000000
2015-03-06 13:45:24.934902500 5883 250 STARTTLS
2015-03-06 13:45:24.952023500 5882 dispatching RCPT TO:<dgibbs@hyacinth.org>
2015-03-06 13:45:24.952025500 5882 450 No plugin decided if relaying is allowed

[Stefano]

did you create custom score rule too?

i.e, do you have a /etc/e-smith/templates-custom/etc/mail/spamassassin/local.cf/20localscores file?

if so, delete it, and call

Code: [Select]

signal-event email-update

again

[HAFManny]

Stefano:

did that too, I rollback everything and still just inside domain email is being received....

Restoring from Backup will bring the same issues.?

Thanks so much for your help....

Manny

[Stefano]

yes, as long as you have custom templates..

please, post here the output of

Code: [Select]

/sbin/e-smith/audittools/templates

and tell us more about server history

[HAFManny]

Stefano:

/etc/e-smith/templates-custom/var/service/qpsmtpd/config/whitelistshosts/10whitelisthosts: MANUALLY_ADDED, ADDITION

only changes made since upgrade from 8.1 to 9.0:

regular  updates.

3/4/2015    GreyListing steps from SonoraComm.com    ( We were plagued with Thousands of SPAMS)

at the end of the day decide to add the SPF rules.. and after that this mess....   BOY SCOUT Promise..... I won't touch it again.....EVER.!!

[Stefano]

rollback greylisting too