Host impersonating domain name

Richard G

Verified User
Joined
Jul 6, 2008
Messages
6,747
Location
Maastricht
I haven't seen any documentation on setting up an email only server.
As far as I know there isn't any doc. However, only in Evo skin there is an option to set a package to email only. This is not in enhanced skin yet.
But even in email only, which is popular, as far as I know in most cases you use the server the package is created on, so the local server. Why using external mailservers on your own packages? I think that's indeed a low percentage.
 

Migdiradmin

Verified User
Joined
Jan 5, 2020
Messages
116
I have the same problem now.

2021-07-01 18:16:18 H=xxxxxx.us (domain.com) [xx.xx.xxx.xx] X=TLS1.2:ECDHE-RSA-AES128-GCM-SHA256:128 CV=no rejected EHLO or HELO domain..com: Bad HELO - Host impersonating domain name (domain.com)

How to fix?
 

Richard G

Verified User
Joined
Jul 6, 2008
Messages
6,747
Location
Maastricht
What exactly is the problem you have with this?
This log line says that the mail is rejected because of the bad Helo command. So it's working as designed.
External domains should not give a helo from a local domain.
 

mxroute

Verified User
Joined
Sep 24, 2019
Messages
131
I have the same problem now.

2021-07-01 18:16:18 H=xxxxxx.us (domain.com) [xx.xx.xxx.xx] X=TLS1.2:ECDHE-RSA-AES128-GCM-SHA256:128 CV=no rejected EHLO or HELO domain..com: Bad HELO - Host impersonating domain name (domain.com)

How to fix?

This:

Code:
# Fix exim ACL
if grep -q "#deny message = HELO_IS_LOCAL_DOMAIN" /etc/exim.conf
then
        echo "Exim ACL already commented out."
else
        sed -i 's/deny message = HELO_IS_LOCAL_DOMAIN/#deny message = HELO_IS_LOCAL_DOMAIN/g' /etc/exim.conf
        sed -i 's/condition = ${if match_domain{$sender_helo_name/#condition = ${if match_domain{$sender_helo_name/g' /etc/exim.conf
        sed -i 's/hosts = ! +relay_hosts/#hosts = ! +relay_hosts/g' /etc/exim.conf
        systemctl restart exim
fi
 

Migdiradmin

Verified User
Joined
Jan 5, 2020
Messages
116
What exactly is the problem you have with this?
This log line says that the mail is rejected because of the bad Helo command. So it's working as designed.
External domains should not give a helo from a local domain.
But this always worked before.

Server A (Server SMTP) - directadmin
Server B ( Server Host) and i used the smtp data so the email can be sended by server A)

Strange thing after reboot the machine start working again.
 

Migdiradmin

Verified User
Joined
Jan 5, 2020
Messages
116
This:

Code:
# Fix exim ACL
if grep -q "#deny message = HELO_IS_LOCAL_DOMAIN" /etc/exim.conf
then
        echo "Exim ACL already commented out."
else
        sed -i 's/deny message = HELO_IS_LOCAL_DOMAIN/#deny message = HELO_IS_LOCAL_DOMAIN/g' /etc/exim.conf
        sed -i 's/condition = ${if match_domain{$sender_helo_name/#condition = ${if match_domain{$sender_helo_name/g' /etc/exim.conf
        sed -i 's/hosts = ! +relay_hosts/#hosts = ! +relay_hosts/g' /etc/exim.conf
        systemctl restart exim
fi
I have to add this to where?
 

Migdiradmin

Verified User
Joined
Jan 5, 2020
Messages
116
For now i have do this thing.

I have add the server's IPs into /etc/virtual/whitelist_hosts_ip.

And working for now.
Code:
2021-07-01 19:04:32 xxx.xxx.xxx.xx whitelisted in local hosts IP whitelist
2021-07-01 19:04:33 xxxxxxxxxxxxxxxxxxxxxxxxxxxxx
2021-07-01 19:04:33 cwd=/var/spool/exim 3 args: /usr/sbin/exim -Mc 1lz13B-0000YK-0M
2021-07-01 19:04:33 1lz13B-0000YK-0M => admin <[email protected]> F=<admi[email protected]> R=virtual_user T=dovecot_lmtp_udp S=5176 C="250 2.0.0 <[email protected]> AAwhD7ED3mDEAQAARZoCDQ Saved"
2021-07-01 19:04:33 1lz13B-0000YK-0M Completed
 
Top