Sendmail / Milter problem
in [Sendmail]
|
Prev: Submit receives Broken Pipe from localhost, defers all remaining emails.
Next: Sendmail complaining about "world writable"
From: paul on 11 Jan 2008 14:28 I have sendmail running with a custom milter and noticed that occasionaly sendmail doesn't call the milter but passes the mail through. The times I have seen this happen the maillog appears to have two "from=<" entries to the same sendmail process (Note maillog below). I also noted that the first from= doesn't have a message size or message id. I'm guessing something happened while collecting the MAIL FROM: but I'm not familiar with the sendmail code. This happened on a Fedora core 6 system with sendmail 8.13.8 running on an Intel core 2 duo with 8 GB of real memory. There were no messages in the /var/log/messages file for this time nor the secure log file. Log rotate for the maillog runs at midnight instead of 04:00. I changed the destination domain name to protect the innocent. Any help would be appreciated. Paul Turner First from=<FRED note proc 3004 Jan 11 04:33:25 s_sys(a)fe80023048fffe8e4dea sendmail[3004]: m0BAXFZH003004: from=<FRED(a)email.phoenix.edu>, size=0, class=0, nrcpts=1, proto=SMTP, daemon=MTA2, relay=[124.81.4.18]rner users 21348478 Dec 5 08:34 ml1 The First from=<mexicansu1 Proc 3008 Jan 11 04:33:28 s_sys(a)fe80023048fffe8e4dea sendmail[3008]: m0BAXJlV003008: from=<mexicansu1(a)cancertours.com>, size=0, class=0, nrcpts=1, proto=ESMTP, daemon=MTA2, relay=85-20-132-36- static.albacom.net [85.20.132.36] (may be forged) Another from=<mexicansu1 Jan 11 04:33:33 s_sys(a)fe80023048fffe8e4dea sendmail[3008]: m0BAXJlX003008: from=<mexicansu1(a)cancertours.com>, size=613, class=0, nrcpts=1, msgid=<01c8537c$9de2dd80$24841455(a)mexicansu1>, proto=ESMTP, daemon=MTA2, relay=85-20-132-36-static.albacom.net [85.20.132.36] (may be forged) Jan 11 04:33:33 s_sys(a)fe80023048fffe8e4dea sendmail[3014]: STARTTLS=client, relay=10.1.5.1., version=TLSv1/SSLv3, verify=FAIL, cipher=AES256-SHA, bits=256/256 Jan 11 04:33:33 s_sys(a)fe80023048fffe8e4dea sendmail[3014]: m0BAXJlX003008: to=<extre(a)sample.com>, delay=00:00:01, xdelay=00:00:00, mailer=smtp, pri=120613, relay=10.1.5.1. [10.1.5.1], dsn=2.0.0, stat=Sent (ok 1200047599 qp 30433) Jan 11 04:33:36 s_sys(a)fe80023048fffe8e4dea sendmail[2971]: m0BAVoaT002971: SYSERR(root): collect: read timeout on connection from [118.172.29.3], from=<oathoutm(a)kenwms.com> Jan 11 04:33:36 s_sys(a)fe80023048fffe8e4dea sendmail[2971]: m0BAVoaT002971: from=<oathoutm(a)kenwms.com>, size=15637, class=0, nrcpts=1, proto=ESMTP, daemon=MTA2, relay=[118.172.29.3] Second from=<FRED proc 3004 Jan 11 04:33:36 s_sys(a)fe80023048fffe8e4dea sendmail[3004]: m0BAXFZK003004: from=<FRED(a)email.phoenix.edu>, size=3222, class=0, nrcpts=1, msgid=<20080111123125.4191.qmail(a)foa2>, proto=SMTP, daemon=MTA2, relay=[124.81.4.18] Jan 11 04:33:36 s_sys(a)fe80023048fffe8e4dea sendmail[3016]: STARTTLS=client, relay=10.1.5.1., version=TLSv1/SSLv3, verify=FAIL, cipher=AES256-SHA, bits=256/256 The to=<FRED, note no Milter lines between Jan 11 04:33:36 s_sys(a)fe80023048fffe8e4dea sendmail[3016]: m0BAXFZK003004: to=<FRED(a)sample.com>, delay=00:00:05, xdelay=00:00:00, mailer=smtp, pri=123222, relay=10.1.5.1. [10.1.5.1], dsn=2.0.0, stat=Sent (ok 1200047602 qp 30444) |