yes i got the same you wrote
i also realized that sendmail allows relay from any host in /etc/hosts no matter if the host is listed in the access file. is this normal?
i mean for all the other hosts (from internet) the relay is not allowed isn't it?
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
220 numb.darktech.org ESMTP Sendmail 8.12.11/8.12.11; Thu, 23 Sep 2004 23:52:37 +0200
EHLO localhost
250-numb.darktech.org Hello localhost.localdomain [127.0.0.1], pleased to meet you
250-ENHANCEDSTATUSCODES
250-PIPELINING
250-8BITMIME
250-SIZE
250-DSN
250-ETRN
250-AUTH DIGEST-MD5 CRAM-MD5
250-DELIVERBY
250 HELP
MAIL FROM:<paul@xxxxxxxxxxxx> AUTH=paul
250 2.1.0 <paul@xxxxxxxxxxxx>... Sender ok
and
Sep 23 23:52:37 numb sendmail[4916]: NOQUEUE: connect from localhost.localdomain [127.0.0.1]
Sep 23 23:52:59 numb sendmail[4916]: ruleset=trust_auth, arg1=paul, relay=localhost.localdomain [127.0.0.1], reject=550 5.7.1 <paul@xxxxxxxxxxxx>... not authenticated
On Thu, 23 Sep 2004, Paul Howarth wrote:
On Thu, 2004-09-23 at 19:06, Alexander Dalloz wrote:Am Do, den 23.09.2004 schrieb Paul Howarth um 18:49:
ruleset=trust_auth, arg1=root@xxxxxxxxxxxxxxxxx, relay=localhost.localdomain [127.0.0.1], reject=550 5.7.1 <root@xxxxxxxxxxxxxxxxx>... not authenticated: 1 Time(s)
This isn't a "real" error, it just says that the AUTH= parameter in the SMTP MAIL command isn't trusted because the client didn't authenticate, so it's not going to pass the AUTH= parameter on to the next hop. That's an expected log message in this case, and you wouldn't get it with logging at the default level (yours is at 10). It's not preventing delivery of any mail.
Paul.
Paul? It is an error indicating the mail is rejected! DSN 550 is a permanent error.
Not so! It looks like that but the 550 is internal to sendmail and the client never sees it. Here's how you can try it yourself:
1. In one client window, do a "tail -f /var/log/maillog" so you can see the messages from sendmail as they happen.
2. In another window, type in commands like these (>>> denotes your typing, <<< denotes responses from sendmail):
$ telnet localhost smtp Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. <<< 220 goalkeeper.city-fan.org ESMTP Sendmail 8.13.1/8.13.1; Thu, 23 Sep 2004 21:49:04 +0100EHLO localhost<<< 250-goalkeeper.city-fan.org Hello localhost.city-fan.org [127.0.0.1], pleased to meet you <<< 250-ENHANCEDSTATUSCODES <<< 250-PIPELINING <<< 250-8BITMIME <<< 250-SIZE <<< 250-ETRN <<< 250-AUTH CRAM-MD5 DIGEST-MD5 <<< 250-DELIVERBY <<< 250 HELPMAIL FROM:<paul@xxxxxxxxxxxx> AUTH=paul<<< 250 2.1.0 <paul@xxxxxxxxxxxx>... Sender ok
At this point the mail log will show:
Sep 23 21:49:25 goalkeeper sm-mta[28272]: ruleset=trust_auth, arg1=paul, relay=localhost.city-fan.org [127.0.0.1], reject=550 5.7.1 <paul@xxxxxxxxxxxx>... not authenticated
But note that the client got a 250, not a 550.
(type QUIT to exit the SMTP session).
Paul.
-- Dott. Carlo Orecchia E-Mail: carlo@xxxxxxxxxxxxxxxxx Web: http://numb.darktech.org/carlo/
