Receive email problem

K

kamkar

Verified User
Joined
Feb 26, 2011
Messages
5
Hi
I can't receive any email...
user who sent email to me give this error:
Code: 
Delivery to the following recipient failed permanently:

    [email protected]

I see the log & get this:
Code: 
2011-04-02 20:24:21 1Q63ca-0006L6-Tk <= [email protected] U=root P=local S=5008 T="lfd on server.soosha-host.com: Suspicious process running under user sooshac" from <[email protected]> for root
2011-04-02 20:24:21 1Q63ca-0006L6-Tk unable to set gid=0 or uid=0 (euid=8): userforward router (recipient is [email protected])
2011-04-02 20:24:21 1Q63ca-0006L6-Tk internal problem in userforward router (recipient is [email protected]): failure to transfer data from subprocess: status=0100 readerror='Permission denied': error=failed to stat /root/.forward (Permission denied)
2011-04-02 20:24:21 1Q63ca-0006L6-Tk == [email protected] R=userforward defer (-1): internal problem in userforward router (recipient is [email protected]): failure to transfer data from subprocess: status=0100 readerror='Permission denied': error=failed to stat /root/.forward (Permission denied)
2011-04-02 20:24:21 1Q63ca-0006L6-Tk ** [email protected]: retry timeout exceeded
2011-04-02 20:24:21 1Q63ca-0006L5-T9 internal problem in userforward router (recipient is [email protected]): failure to transfer data from subprocess: status=0100 readerror='Permission denied': error=failed to stat /root/.forward (Permission denied)
2011-04-02 20:24:21 1Q63ca-0006L5-T9 == [email protected] R=userforward defer (-1): internal problem in userforward router (recipient is [email protected]): failure to transfer data from subprocess: status=0100 readerror='Permission denied': error=failed to stat /root/.forward (Permission denied)
2011-04-02 20:24:21 1Q63ca-0006L5-T9 ** [email protected]: retry timeout exceeded
2011-04-02 20:24:21 1Q63ca-0006Kh-QA Completed
2011-04-02 20:24:21 1Q63ca-0006L5-T9 [email protected]: error ignored
2011-04-02 20:24:21 1Q63cb-0006LQ-0g <= [email protected] U=root P=local S=4955 T="lfd on server.soosha-host.com: Suspicious process running under user sooshapriz" from <[email protected]> for root
2011-04-02 20:24:21 1Q63ca-0006L5-T9 Completed
2011-04-02 20:24:21 1Q63cb-0006LQ-0g unable to set gid=0 or uid=0 (euid=8): userforward router (recipient is [email protected])
2011-04-02 20:24:21 1Q63cb-0006LQ-0g internal problem in userforward router (recipient is [email protected]): failure to transfer data from subprocess: status=0100 readerror='Permission denied': error=failed to stat /root/.forward (Permission denied)
2011-04-02 20:24:21 1Q63cb-0006LQ-0g == [email protected] R=userforward defer (-1): internal problem in userforward router (recipient is [email protected]): failure to transfer data from subprocess: status=0100 readerror='Permission denied': error=failed to stat /root/.forward (Permission denied)
2011-04-02 20:24:21 1Q63cb-0006LQ-0g ** [email protected]: retry timeout exceeded
2011-04-02 20:24:21 1Q63cb-0006LR-0q <= <> R=1Q63ca-0006L6-Tk U=mail P=local S=5877 T="Mail delivery failed: returning message to sender" from <> for [email protected]
2011-04-02 20:24:21 1Q63ca-0006L6-Tk Completed
2011-04-02 20:24:21 1Q63cb-0006LR-0q unable to set gid=0 or uid=0 (euid=8): userforward router (recipient is [email protected])
2011-04-02 20:24:21 1Q63cb-0006LR-0q internal problem in userforward router (recipient is [email protected]): failure to transfer data from subprocess: status=0100 readerror='Permission denied': error=failed to stat /root/.forward (Permission denied)
2011-04-02 20:24:21 1Q63cb-0006LR-0q == [email protected] R=userforward defer (-1): internal problem in userforward router (recipient is [email protected]): failure to transfer data from subprocess: status=0100 readerror='Permission denied': error=failed to stat /root/.forward (Permission denied)
2011-04-02 20:24:21 1Q63cb-0006LR-0q ** [email protected]: retry timeout exceeded
2011-04-02 20:24:21 1Q63cb-0006Lg-4z <= <> R=1Q63cb-0006LQ-0g U=mail P=local S=5824 T="Mail delivery failed: returning message to sender" from <> for [email protected]
2011-04-02 20:24:21 1Q63cb-0006LQ-0g Completed
2011-04-02 20:24:21 1Q63cb-0006Lg-4z unable to set gid=0 or uid=0 (euid=8): userforward router (recipient is [email protected])
2011-04-02 20:24:21 1Q63cb-0006Lg-4z internal problem in userforward router (recipient is [email protected]): failure to transfer data from subprocess: status=0100 readerror='Permission denied': error=failed to stat /root/.forward (Permission denied)
2011-04-02 20:24:21 1Q63cb-0006Lg-4z == [email protected] R=userforward defer (-1): internal problem in userforward router (recipient is [email protected]): failure to transfer data from subprocess: status=0100 readerror='Permission denied': error=failed to stat /root/.forward (Permission denied)
2011-04-02 20:24:21 1Q63cb-0006Lg-4z ** [email protected]: retry timeout exceeded
2011-04-02 20:24:21 1Q63cb-0006LR-0q [email protected]: error ignored
2011-04-02 20:24:21 1Q63cb-0006Lg-4z [email protected]: error ignored
2011-04-02 20:24:21 1Q63cb-0006LR-0q Completed
2011-04-02 20:24:21 1Q63cb-0006Lg-4z Completed
2011-04-02 20:44:31 1Q63w7-0001vh-5a <= [email protected] U=root P=local S=701 T="lfd on server.soosha-host.com: Excessive resource usage: dovecot (30601)" from <[email protected]> for root
2011-04-02 20:44:31 1Q63w7-0001vh-5a unable to set gid=0 or uid=0 (euid=8): userforward router (recipient is [email protected])
2011-04-02 20:44:31 1Q63w7-0001vh-5a internal problem in userforward router (recipient is [email protected]): failure to transfer data from subprocess: status=0100 readerror='Permission denied': error=failed to stat /root/.forward (Permission denied)
2011-04-02 20:44:31 1Q63w7-0001vh-5a == [email protected] R=userforward defer (-1): internal problem in userforward router (recipient is [email protected]): failure to transfer data from subprocess: status=0100 readerror='Permission denied': error=failed to stat /root/.forward (Permission denied)
2011-04-02 20:44:31 1Q63w7-0001vh-5a ** [email protected]: retry timeout exceeded
2011-04-02 20:44:31 1Q63w7-0001vl-9L <= <> R=1Q63w7-0001vh-5a U=mail P=local S=1570 T="Mail delivery failed: returning message to sender" from <> for [email protected]
2011-04-02 20:44:31 1Q63w7-0001vl-9L unable to set gid=0 or uid=0 (euid=8): userforward router (recipient is [email protected])
2011-04-02 20:44:31 1Q63w7-0001vl-9L internal problem in userforward router (recipient is [email protected]): failure to transfer data from subprocess: status=0100 readerror='Permission denied': error=failed to stat /root/.forward (Permission denied)
2011-04-02 20:44:31 1Q63w7-0001vl-9L == [email protected] R=userforward defer (-1): internal problem in userforward router (recipient is [email protected]): failure to transfer data from subprocess: status=0100 readerror='Permission denied': error=failed to stat /root/.forward (Permission denied)
2011-04-02 20:44:31 1Q63w7-0001vl-9L ** [email protected]: retry timeout exceeded
2011-04-02 20:44:31 1Q63w7-0001vl-9L [email protected]: error ignored
2011-04-02 20:44:31 1Q63w7-0001vh-5a Completed
2011-04-02 20:44:31 1Q63w7-0001vl-9L Completed
2011-04-02 21:13:54 H=mail-qw0-f52.google.com [209.85.216.52] F=<[email protected]> rejected RCPT <[email protected]>: 
2011-04-02 21:13:54 H=mail-qw0-f52.google.com [209.85.216.52] incomplete transaction (QUIT) from <[email protected]>
2011-04-02 21:17:26 exim 4.72 daemon started: pid=29729, -q15m, listening for SMTP on port 25 (IPv4) port 587 (IPv4)
2011-04-02 21:18:34 H=mail-qw0-f52.google.com [209.85.216.52] F=<[email protected]> rejected RCPT <[email protected]>: 
2011-04-02 21:18:34 H=mail-qw0-f52.google.com [209.85.216.52] incomplete transaction (QUIT) from <[email protected]>
 
In which file do you see these errors? It looks like /var/log/exim/mainlog, but there's no reference to webmaster in it which there should be if it's receiving email for webmaster.

Do you have a mailbox for webmaster, or is it forwarded somewhere? If it's forwarded, to what address?

Jeff
 
In which file do you see these errors? It looks like /var/log/exim/mainlog
Click to expand...
yes, mainlog

but there's no reference to webmaster in it which there should be if it's receiving email for webmaster.

Do you have a mailbox for webmaster, or is it forwarded somewhere? If it's forwarded, to what address?
Click to expand...
"all" of mailbox have this problem...
I checked 2 mail box, [email protected] & [email protected]
this mail box...
this mailboxes were ok until last week
 
What have you changed since it worked? Have you updated exim? Hasve you updated DirectAdmin? Anything else?

Are you sure DNS is properly pointed? Does your /etc/virtual directory have all the files and subdirectories it should?

Jeff
 
What have you changed since it worked? Have you updated exim? Hasve you updated DirectAdmin? Anything else?
Click to expand...
I update directadmin from 1.37 to 1.38...I can't remember anything else...


Are you sure DNS is properly pointed? Does your /etc/virtual directory have all the files and subdirectories it should?
Click to expand...
I don't know...today I rebuild server & install directadmin again...But the problem still remains!!!
 
Make certain the problem isn't in DNS.

Have you tested with all firewalling turned off?

Are you trying the server rebuild with default exim.conf, and default installations of everything?

Other than that I don't know without logging in and doing an investigtion. I charge for that, so if you're interested contact me, or one of the other server admins who post on these forums. If you're going to contact me please do it by email; I respond to email more quickly than to posts and private messaes.

Jeff
 
I solved this problem...
I install a fresh directadmin, but when I restore users backups (without firewall or other custom setting) the problem got back!

Solution:
In user mode, In MX records, I marked "Local Mail Server" check box!!
 
Same problem...

Hi,

I have the same problem on a new server, CentOS 5.5. I didn't investigated too much this after installation... I just reinstalled exim. All mail that was not delivered to the mailboxes are now delivered... that means the server receive and store the messages but it is unable to transfer them to the users mail dirs.

But today I realized how to reproduce this on my server:
# cd /usr/local/directadmin/scripts/
# ./set_permissions.sh email

The only errors I see are:
chmod: cannot access `/etc/virtual/domain.com/reply/*': No such file or directory
chown: cannot access `/etc/virtual/domain.com/majordomo/lists': No such file or directory

Error lines on exim paniclog:
2011-04-09 12:50:25 1Q8UoD-0007Rh-HB internal problem in userforward router (recipient is [email protected]): failure to transfer data from subprocess: status=0100 readerror='Permission denied': error=failed to stat /root/.forward (Permission denied)
2011-04-09 12:51:06 1Q8Uos-0007SH-5N unable to set gid=12 or uid=503 (euid=8): domain_filter router (recipient is [email protected])
2011-04-09 12:51:06 1Q8Uos-0007SH-5N internal problem in domain_filter router (recipient is [email protected]): failure to transfer data from subprocess: status=0100 readerror='Success'

There is no file /root/.forward...
Local Mail Server is checkd on my accounts...
Any other ideea?
 
found similar issue caused by permission reset

Hi, one of my server has similar issues after running ./set_permissions.sh

have to use http://help.directadmin.com/item.php?id=125 method to recompile exim everytime permission problem rises. How to avoid this? any fix for the script ./set_permissions.sh??:confused:
 
Hello,

Permission problems tend to arise from the /usr/sbin/exim binary not being set to 4755.

I do recall there was a bug some time ago where the set_permissions.sh would change it to something else, but that was resolved a while ago.

Make sure you're using the latest version of DA to get the newer version of set_permissions.sh.

Related line in the email() function of set_permissions.sh:
Code: 
set_file /usr/sbin/exim root $RT_GRP 4755
John
 
Interesting. That script has hosed my exim, and mysql processes.
Is there anyway to return to working level?

I did see some where you could run set_permissions.sh email ?

Is that a quick fix. I am running out of time on this one, this is my primary production email server.
 
Exim MTA issue fixed. I did inspect the set_permissions.sh for the 4755
in line -- set_file /usr/sbin/exim root $RT_GRP 4755
and it was there, however the exim file was not set that way.
I chmod' to 4755 and left the groups alone.

Working well, but i wonder what else is broken. Time will tell.
 
You must log in or register to reply here.
Back
Top