open relay

J

JosHost

Verified User
Joined
Mar 9, 2006
Messages
37
Location
israel
hi
most of the email sent from my server is being blocked becouse of something called 'open relay', i got this message here and i still don't understand what do i need to do:

Return-Path: <[email protected]>
X-Original-To: [email protected]
Delivered-To: [email protected]
Received: from server.joshost.com (unknown [84.94.230.150])
by bockscar.ordb.org (Postfix) with ESMTP id AF51D55BB
for <[email protected]>; Sun, 2 Apr 2006 16:35:55 +0000 (GMT)
Received: from [217.157.38.18] (helo=ordb.org)
by server.joshost.com with esmtp (Exim 4.60)
(envelope-from <[email protected]>)
id 1FQ5ZK-0002Gy-PM
for [email protected]; Sun, 02 Apr 2006 19:36:51 +0300
From: [email protected]
To: [email protected]
X-ORDB-Envelope-From: [email protected]
X-ORDB-Envelope-To: [email protected]
Subject: ORDB.org check (0.6136067665467170.2965100222) ip=84.94.230.150
Message-Id: <20060402163555.AF51D55BB@bocksca

they are saying that beouse of the open relay the email is not accpets, how do i close the relay? or what do i need to do?
thanks
joseph.
 
Open-relay mailservers are a primary source of spam these days. Open-relay mailservers are mailservers that allow anyone to send mail to anyone else.

A mailserver should only accept outgoing mail if it's coming from an account on that server. If I can use your server to send mail to someone else then your server is an open-relay server because I do not have an account on your server.

As far as I know Exim does not allow open-relay by default but without more information it's impossible to tell what could have caused it to allow open-relay on your server.

You can test if your server allows open-relay here: http://www.abuse.net/relay.html

You can also check to see if your server is blacklisted here: http://openrbl.org/client

First you need to 'plug the hole', make sure your server doesn't allow open-relay. Then you need to go to the website of each organisation that blacklists you to find out how this can be undone. As long as you're blacklisted by certain organisations other mailserves will refuse mail from your server.
 
hi
Your wrote: As far as I know Exim does not allow open-relay by default but without more information it's impossible to tell what could have caused it to allow open-relay on your server.

i have already blaclisted in 4 places,
also i have registred with abuse.net if i understand correctly i should get a pssword?
i did an anonymous check and this is the result:
Mail relay testing
Connecting to mail.joshost.com for anonymous test ...

<<< 220 server.joshost.com ESMTP Exim 4.60 Fri, 07 Apr 2006 10:26:40 +0300
>>> HELO www.abuse.net
<<< 250 server.joshost.com Hello www.abuse.net [208.31.42.77]
Relay test 1
>>> RSET
<<< 250 Reset OK
>>> MAIL FROM:<[email protected]>
<<< 250 OK
>>> RCPT TO:<[email protected]>
<<< 550 authentication required
Relay test 2
>>> RSET
<<< 250 Reset OK
>>> MAIL FROM:<spamtest>
<<< 501 <spamtest>: sender address must contain a domain
Relay test 3
>>> RSET
<<< 250 Reset OK
>>> MAIL FROM:<>
<<< 250 OK
>>> RCPT TO:<[email protected]>
<<< 550 authentication required
Relay test 4
>>> RSET
<<< 250 Reset OK
>>> MAIL FROM:<[email protected]>
<<< 250 OK
>>> RCPT TO:<[email protected]>
<<< 250 Accepted
Relay test result
Hmmn, at first glance, host appeared to accept a message for relay.

THIS MAY OR MAY NOT MEAN THAT IT'S AN OPEN RELAY.

Some systems appear to accept relay mail, but then reject messages internally rather than delivering them, but you cannot tell at this point whether the message will be relayed or not.

You cannot tell if it is really an open relay without sending a test message; this anonymous user test DID NOT send a test message.

can you just tell me how do i close this function from "open" to "close" i would thank very much for that as since yestersay some hacker sent me an email saying he is going to spam the server so time is realy importand on this ...
i must say that about 3-4 weeks ago my server manager told me that a technical person from DA fixed the email problem that was, since then their was an update and a fu**** arab hacker and i am saying arab that becouse i am from israel and i love everyone but this guy seems to realy hate jews, its the first time i am getting an antisemic words on my life, i tought this things was past away, go figure,
waiting for an answer,
thanks
joseph.
 
This has been discussed previously.

Have you whitelisted any domains hosted on your server?

If you whitelist domains that are hosted on your server (i.e., put them into /etc/virtual/whitelist_domains), you'll fail one of the open-relay tests.

Even though your server isn't an open relay, it will relay for any spammer who uses [email protected] as the From address, if example.com is hosted on your server.

You cannot whitelist domains hosted on your server.

Jeff
 
You must log in or register to reply here.
Back
Top