數碼中文坊

 取回密碼
 我要註冊
檢視: 7039|回覆: 3

白名單的設定

[複製連結]
發表於 2006-5-9 15:34:22 | 顯示全部樓層 |閱讀模式

馬上註冊,結交更多好友,享用更多功能,讓你輕鬆瀏覽論壇。

你需要 登入 才可以下載或檢視,沒有帳號?我要註冊

x
昨天下午在分公司架設了一個郵件伺服器,原域名為 company.com.tw,分公司伺服器為mail.company.com.tw,理所當然在主郵件伺服器寄信\收信白名單中設立 *@*.company.com.tw這個規則,結果從設立起到今天下午查看LOG資料,發現到所有垃圾信都適用這個規則,理所當然每個收件者都收到不少垃圾信。

至於為什麼我也不知道,只能先把這個規則取消!

後續:
取消此規則後還是會發生,看來又是一個臭蟲了!
Tue 2006-05-09 15:35:27: ----------
Tue 2006-05-09 15:37:05: Session 28; child 1; thread 996
Tue 2006-05-09 15:36:19: [28:1] Accepting SMTP connection from [218.63.92.165 : 1339]
Tue 2006-05-09 15:36:19: [28:1] Performing PTR lookup (165.92.63.218.IN-ADDR.ARPA)
Tue 2006-05-09 15:36:19: [28:1] * Error: Name server reports domain name unknown
Tue 2006-05-09 15:36:19: [28:1] * No PTR records found
Tue 2006-05-09 15:36:19: [28:1] ---- End PTR results
Tue 2006-05-09 15:36:19: [28:1] --> 220 company.com.tw ESMTP MAIL ready
Tue 2006-05-09 15:36:19: [28:1] <-- HELO hotnnail.com
Tue 2006-05-09 15:36:19: [28:1] Performing IP lookup (hotnnail.com)
Tue 2006-05-09 15:36:30: [28:1] * Error: 10 second wait for DNS response exceeded
Tue 2006-05-09 15:36:30: [28:1] * Error: The name server reports that it is having technical problems
Tue 2006-05-09 15:36:30: [28:1] ---- End IP lookup results
Tue 2006-05-09 15:36:30: [28:1] --> 250 cfwater.com.tw Hello hotnnail.com, pleased to meet you
Tue 2006-05-09 15:36:31: [28:1] <-- MAIL FROM:<[email protected]>
Tue 2006-05-09 15:36:31: [28:1] Performing IP lookup (hotnnail.com)
Tue 2006-05-09 15:36:31: [28:1] * Error: The name server reports that it is having technical problems
Tue 2006-05-09 15:36:31: [28:1] ---- End IP lookup results
Tue 2006-05-09 15:36:31: [28:1] --> 250 <[email protected]>, Sender ok
Tue 2006-05-09 15:36:31: [28:1] <-- RCPT TO:<[email protected]>
Tue 2006-05-09 15:36:31: [28:1] Performing DNS-BL lookup (218.63.92.165 - connecting IP)
Tue 2006-05-09 15:36:51: [28:1] * sbl-xbl.spamhaus.org - timed out (10 second wait)
Tue 2006-05-09 15:36:51: [28:1] * opm.blitzed.org - passed
Tue 2006-05-09 15:36:52: [28:1] * relays.ordb.org - passed
Tue 2006-05-09 15:37:02: [28:1] * bl.spamcop.net - passed
Tue 2006-05-09 15:37:02: [28:1] ---- End DNS-BL results
Tue 2006-05-09 15:37:02: [28:1] --> 250 <[email protected]>, Recipient ok
Tue 2006-05-09 15:37:02: [28:1] <-- DATA
Tue 2006-05-09 15:37:02: [28:1] Creating temp file (SMTP): c:\mdaemon\queues\temp\md50000000001.tmp
Tue 2006-05-09 15:37:02: [28:1] --> 354 Enter mail, end with <CRLF>.<CRLF>
Tue 2006-05-09 15:37:03: [28:1] Message size: 9045 bytes
Tue 2006-05-09 15:37:03: [28:1] Passing message through AntiVirus (Size: 9045)...
Tue 2006-05-09 15:37:03: [28:1] * Message is clean (no viruses found)
Tue 2006-05-09 15:37:03: [28:1] ---- End AntiVirus results
Tue 2006-05-09 15:37:03: [28:1] Passing message through Spam Filter (Size: 9045)...
Tue 2006-05-09 15:37:05: [28:1] * 2.4 X_LIBRARY Message has X-Library header
Tue 2006-05-09 15:37:05: [28:1] * 2.2 INVALID_DATE Invalid Date: header (not RFC 2822)
Tue 2006-05-09 15:37:05: [28:1] * -100 USER_IN_WHITELIST_TO address is listed in 'whitelist_to'
Tue 2006-05-09 15:37:05: [28:1] * 2.4 DATE_IN_FUTURE_96_XX Date: is 96 hours or more after Received: date
Tue 2006-05-09 15:37:05: [28:1] * 0.5 HTML_IMAGE_RATIO_02 BODY: HTML has a low ratio of text to image
Tue 2006-05-09 15:37:05: [28:1] * area
Tue 2006-05-09 15:37:05: [28:1] * 0.1 HTML_90_100 BODY: Message is 90% to 100% HTML
Tue 2006-05-09 15:37:05: [28:1] * 0.0 HTML_MESSAGE BODY: HTML included in message
Tue 2006-05-09 15:37:05: [28:1] * 10 BAYES_99 BODY: Bayesian spam probability is 99 to 100%
Tue 2006-05-09 15:37:05: [28:1] * [score: 1.0000]
Tue 2006-05-09 15:37:05: [28:1] * 0.0 MIME_HTML_ONLY BODY: Message only has text/html MIME parts
Tue 2006-05-09 15:37:05: [28:1] * 3.2 NO_DNS_FOR_FROM DNS: Envelope sender has no MX or A DNS records
Tue 2006-05-09 15:37:05: [28:1] * 8.0 URIBL_JP_SURBL Contains an URL listed in the JP SURBL blocklist
Tue 2006-05-09 15:37:05: [28:1] * [URIs: benqbenq.com]
Tue 2006-05-09 15:37:05: [28:1] * 8.0 URIBL_SC_SURBL Contains an URL listed in the SC SURBL blocklist
Tue 2006-05-09 15:37:05: [28:1] * [URIs: commq.com enews.com.tw benqbenq.com]
Tue 2006-05-09 15:37:05: [28:1] * 2.7 FORGED_OUTLOOK_HTML Outlook can't send HTML message only
Tue 2006-05-09 15:37:05: [28:1] * 1.6 MISSING_MIMEOLE Message has X-MSMail-Priority, but no X-MimeOLE
Tue 2006-05-09 15:37:05: [28:1] * 0.0 FORGED_MUA_OUTLOOK Forged mail pretending to be from MS Outlook
Tue 2006-05-09 15:37:05: [28:1] ---- End SpamAssassin results
Tue 2006-05-09 15:37:05: [28:1] Spam Filter score/req: -58.90/12.0
Tue 2006-05-09 15:37:05: [28:1] Message creation successful: c:\mdaemon\queues\inbound\md50000011715.msg
Tue 2006-05-09 15:37:05: [28:1] --> 250 Ok, message saved <Message-ID: >
Tue 2006-05-09 15:37:05: [28:1] <-- QUIT
Tue 2006-05-09 15:37:05: [28:1] --> 221 See ya in cyberspace
Tue 2006-05-09 15:37:05: [28:1] SMTP session successful (Bytes in/out: 9146/283)
Tue 2006-05-09 15:37:05: ----------

不要跟我說,我把[email protected] 加入白名單中,這種白癡位置一看也知道假的,目前解決方案是設立白名單只減0.1分,我看看mdaemon會發生什麼事。
 樓主| 發表於 2006-5-9 15:54:48 | 顯示全部樓層
白名單設只減0.1分也沒用,mdaemon 照樣誤判,離譜的是只設減0.1分,它還是照減100分。

Tue 2006-05-09 15:43:57: ----------
Tue 2006-05-09 15:50:14: Session 45; child 1; thread 3808
Tue 2006-05-09 15:50:06: [45:1] Accepting SMTP connection from [61.159.254.215 : 4233]
Tue 2006-05-09 15:50:06: [45:1] Performing PTR lookup (215.254.159.61.IN-ADDR.ARPA)
Tue 2006-05-09 15:50:06: [45:1] * Error: Name server reports domain name unknown
Tue 2006-05-09 15:50:06: [45:1] * No PTR records found
Tue 2006-05-09 15:50:06: [45:1] ---- End PTR results
Tue 2006-05-09 15:50:06: [45:1] --> 220 company.com.tw ESMTP MAIL ready
Tue 2006-05-09 15:50:07: [45:1] <-- HELO servicehome.org
Tue 2006-05-09 15:50:07: [45:1] Performing IP lookup (servicehome.org)
Tue 2006-05-09 15:50:07: [45:1] * D=servicehome.org TTL=(7) A=[220.163.176.204]
Tue 2006-05-09 15:50:07: [45:1] ---- End IP lookup results
Tue 2006-05-09 15:50:07: [45:1] --> 250 company.com.tw Hello servicehome.org (may be forged), pleased to meet you
Tue 2006-05-09 15:50:07: [45:1] <-- MAIL FROM:<[email protected]>
Tue 2006-05-09 15:50:07: [45:1] Performing IP lookup (servicehome.org)
Tue 2006-05-09 15:50:07: [45:1] * D=servicehome.org TTL=(4) A=[220.163.176.204]
Tue 2006-05-09 15:50:08: [45:1] * P=000 D=servicehome.org TTL=(7) MX=[mail.servicehome.org] {61.31.235.245}
Tue 2006-05-09 15:50:08: [45:1] ---- End IP lookup results
Tue 2006-05-09 15:50:08: [45:1] --> 250 <[email protected]>, Sender ok
Tue 2006-05-09 15:50:08: [45:1] <-- RCPT TO:<[email protected]>
Tue 2006-05-09 15:50:08: [45:1] Performing DNS-BL lookup (61.159.254.215 - connecting IP)
Tue 2006-05-09 15:50:08: [45:1] * sbl-xbl.spamhaus.org - failed
Tue 2006-05-09 15:50:09: [45:1] * opm.blitzed.org - passed
Tue 2006-05-09 15:50:09: [45:1] * relays.ordb.org - passed
Tue 2006-05-09 15:50:10: [45:1] * bl.spamcop.net - passed
Tue 2006-05-09 15:50:10: [45:1] ---- End DNS-BL results
Tue 2006-05-09 15:50:10: [45:1] --> 250 <[email protected]>, Recipient ok
Tue 2006-05-09 15:50:10: [45:1] <-- DATA
Tue 2006-05-09 15:50:10: [45:1] Creating temp file (SMTP): c:\mdaemon\queues\temp\md50000000005.tmp
Tue 2006-05-09 15:50:10: [45:1] --> 354 Enter mail, end with <CRLF>.<CRLF>
Tue 2006-05-09 15:50:10: [45:1] Message size: 2412 bytes
Tue 2006-05-09 15:50:10: [45:1] Passing message through AntiVirus (Size: 2412)...
Tue 2006-05-09 15:50:10: [45:1] * Message is clean (no viruses found)
Tue 2006-05-09 15:50:10: [45:1] ---- End AntiVirus results
Tue 2006-05-09 15:50:10: [45:1] Passing message through Spam Filter (Size: 2412)...
Tue 2006-05-09 15:50:13: [45:1] * 2.4 X_LIBRARY Message has X-Library header
Tue 2006-05-09 15:50:13: [45:1] * 2.2 INVALID_DATE Invalid Date: header (not RFC 2822)
Tue 2006-05-09 15:50:13: [45:1] * 3.0 MDAEMON_DNSBL MDaemon: marked by MDaemon's DNSBL
Tue 2006-05-09 15:50:13: [45:1] * -100 USER_IN_WHITELIST_TO address is listed in 'whitelist_to'
Tue 2006-05-09 15:50:13: [45:1] * 2.4 DATE_IN_FUTURE_96_XX Date: is 96 hours or more after Received: date
Tue 2006-05-09 15:50:13: [45:1] * 1.2 HTML_IMAGE_ONLY_20 BODY: HTML: images with 1600-2000 bytes of words
Tue 2006-05-09 15:50:13: [45:1] * 0.1 HTML_TEXT_AFTER_BODY BODY: HTML contains text after BODY close tag
Tue 2006-05-09 15:50:13: [45:1] * 0.5 HTML_IMAGE_RATIO_02 BODY: HTML has a low ratio of text to image
Tue 2006-05-09 15:50:13: [45:1] * area
Tue 2006-05-09 15:50:13: [45:1] * 0.1 HTML_90_100 BODY: Message is 90% to 100% HTML
Tue 2006-05-09 15:50:13: [45:1] * 0.0 HTML_MESSAGE BODY: HTML included in message
Tue 2006-05-09 15:50:13: [45:1] * 10 BAYES_99 BODY: Bayesian spam probability is 99 to 100%
Tue 2006-05-09 15:50:13: [45:1] * [score: 1.0000]
Tue 2006-05-09 15:50:13: [45:1] * 0.0 MIME_HTML_ONLY BODY: Message only has text/html MIME parts
Tue 2006-05-09 15:50:13: [45:1] * 8.0 URIBL_JP_SURBL Contains an URL listed in the JP SURBL blocklist
Tue 2006-05-09 15:50:13: [45:1] * [URIs: benqbenq.com]
Tue 2006-05-09 15:50:13: [45:1] * 9.5 URIBL_OB_SURBL Contains an URL listed in the OB SURBL blocklist
Tue 2006-05-09 15:50:13: [45:1] * [URIs: jus23.com]
Tue 2006-05-09 15:50:13: [45:1] * 8.0 URIBL_SC_SURBL Contains an URL listed in the SC SURBL blocklist
Tue 2006-05-09 15:50:13: [45:1] * [URIs: enews.com.tw benqbenq.com]
Tue 2006-05-09 15:50:13: [45:1] * 2.7 FORGED_OUTLOOK_HTML Outlook can't send HTML message only
Tue 2006-05-09 15:50:13: [45:1] * 1.6 MISSING_MIMEOLE Message has X-MSMail-Priority, but no X-MimeOLE
Tue 2006-05-09 15:50:13: [45:1] * 0.0 FORGED_MUA_OUTLOOK Forged mail pretending to be from MS Outlook
Tue 2006-05-09 15:50:13: [45:1] ---- End SpamAssassin results
Tue 2006-05-09 15:50:13: [45:1] Spam Filter score/req: -48.30/12.0
Tue 2006-05-09 15:50:13: [45:1] Message creation successful: c:\mdaemon\queues\inbound\md50000011717.msg
Tue 2006-05-09 15:50:13: [45:1] --> 250 Ok, message saved <Message-ID: >
Tue 2006-05-09 15:50:14: [45:1] <-- QUIT
Tue 2006-05-09 15:50:14: [45:1] --> 221 See ya in cyberspace
Tue 2006-05-09 15:50:14: [45:1] SMTP session successful (Bytes in/out: 2518/304)
Tue 2006-05-09 15:50:14: ----------

看來郵件伺服器又要重開了,會被老闆給罵死了!
 樓主| 發表於 2006-5-9 16:14:11 | 顯示全部樓層
重開伺服器就正常了,不過webadmin 的垃圾信篩選 選項都無法設定了,這個 9.0還真的是………。
發表於 2007-9-3 23:40:26 | 顯示全部樓層
大大碰到的經驗真是豐富呢~~小弟真是受教 ^^剛學會架mail server真是搞的一個頭兩個大~~
你需要登入後才可以回覆 登入 | 我要註冊

本版積分規則

Archiver|禁閉室|手機版|數碼中文坊

GMT+8, 2024-3-29 08:06 PM

Powered by Discuz! X3.4 Licensed

© 2001-2023 Discuz! Team.

快速回覆 返回頂端 返回清單