Loading ...
Sorry, an error occurred while loading the content.

224427RE: Asking Open Relay

Expand Messages
  • Marky Yehezkiel
    Aug 2, 2007
    • 0 Attachment
      >You still haven't shown us evidence you are an open relay. The
      >configuration you posted earlier doesn't appear to be an open relay
      >and your log postings were incomplete.

      Hi, Thank you for your comment and this is when I try from
      abuse.net/relay.html :

      Mail relay testing
      Connecting to 203.80.8.36 for registered user test ...
      <<< 220 smtp2.satnetcom.com ESMTP Postfix
      >>> HELO www.abuse.net
      <<< 250 smtp2.satnetcom.com


      Relay test 1
      >>> RSET
      <<< 250 Ok
      >>> MAIL FROM:<spamtest@...>
      <<< 250 Ok
      >>> RCPT TO:<marky@...>
      <<< 250 Ok
      >>> DATA
      <<< 354 End data with <CR><LF>.<CR><LF>
      >>> (message body)
      <<< 250 Ok: queued as 133BA2676EB

      Relay test result
      Hmmn, at first glance, host appeared to accept a message for relay.
      THIS MAY OR MAY NOT MEAN THAT IT'S AN OPEN RELAY.

      Some systems appear to accept relay mail, but then reject messages
      internally rather than delivering them, but you cannot tell at this point
      whether the message will be relayed or not.

      If it is really an open relay, the test message will be delivered to you. If
      you do not receive the test message in your e-mail in the next few hours, it
      IS NOT an open relay.

      And queue ID is 133BA2676EB and from my mailserver log :

      Aug 3 09:44:42 smtp2 postfix/smtpd[33877]: 133BA2676EB:
      client=www.abuse.net[208.31.42.77]
      Aug 3 09:44:42 smtp2 postfix/cleanup[34459]: 133BA2676EB:
      message-id=<rlytest-1186104676-99995@...>
      Aug 3 09:44:42 smtp2 postfix/qmgr[223]: 133BA2676EB:
      from=<spamtest@...>, size=1125, nrcpt=1 (queue active)
      Aug 3 09:44:45 smtp2 postfix/smtp[34352]: 133BA2676EB:
      to=<marky@...>, relay=127.0.0.1[127.0.0.1], delay=5, status=sent
      (250 2.6.0 Ok, id=34400-03, from MTA([127.0.0.1]:10025): 250 Ok: queued as
      353B6267428)
      Aug 3 09:44:45 smtp2 postfix/qmgr[223]: 133BA2676EB: removed

      Aug 3 09:44:45 smtp2 postfix/smtpd[34360]: 353B6267428:
      client=localhost[127.0.0.1]
      Aug 3 09:44:45 smtp2 postfix/cleanup[34481]: 353B6267428:
      message-id=<rlytest-1186104676-99995@...>
      Aug 3 09:44:45 smtp2 postfix/qmgr[223]: 353B6267428:
      from=<spamtest@...>, size=1720, nrcpt=1 (queue active)
      Aug 3 09:44:45 smtp2 postfix/smtp[34352]: 133BA2676EB:
      to=<marky@...>, relay=127.0.0.1[127.0.0.1], delay=5, status=sent
      (250 2.6.0 Ok, id=34400-03, from MTA([127.0.0.1]:10025): 250 Ok: queued as
      353B6267428)
      Aug 3 09:44:45 smtp2 postfix/smtp[34220]: 353B6267428:
      to=<marky@...>, relay=mail.satnetcom.com[203.80.8.39], delay=0,
      status=sent (250 Ok: queued as 7B9505C39B)
      Aug 3 09:44:45 smtp2 postfix/qmgr[223]: 353B6267428: removed

      From abuse.net notification said that : If it is really an open relay, the
      test message will be delivered to you. If you do not receive the test
      message in your e-mail in the next few hours, it IS NOT an open relay.

      And I able received their test message and here is the contain of the email:

      This is a test of third-party mail relay, generated via the Network Abuse
      Clearinghouse at http://www.abuse.net

      Target host = 203.80.8.36 smtp2.satnetcom.net.id
      Test performed by <marky@...> from 203.80.14.242

      A well-configured mail server should NOT relay third-party email.
      Otherwise, the server is subject to abuse by vandals and spammers, and
      probable blacklisting by recipients of the unwanted third-party e-mail.

      For information on how to secure a mail server against third-party relay,
      visit <URL: http://www.mail-abuse.com/support/an_sec3rdparty.html>.

      Because my IP was blacklist by dsbl.org and from the log I saw from outside
      my network made my IP listed by sending email via my mailserver to
      listme@dsbl please see from dsbl history :

      Received: from localhost (localhost [127.0.0.1]) by smtp2.satnetcom.com
      (Postfix) with ESMTP id E82B6267486 for <listme@...>; Thu, 19
      Jul 2007 23:12:44 +0000 (UTC)
      X-Virus-Scanned: amavisd-new at satnetcom.com
      Received: from smtp2.satnetcom.com ([127.0.0.1]) by localhost
      (smtp2.satnetcom.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id
      t-XhWs7n-mcP for <listme@...>; Thu, 19 Jul 2007 23:12:44 +0000
      (UTC)
      Received: from noc.mediationtelecom.net (noc.saveho.com [84.96.74.32]) by
      smtp2.satnetcom.com (Postfix) with SMTP id B99F4267477 for
      <listme@...>; Thu, 19 Jul 2007 23:12:43 +0000 (UTC)
      Message-ID: <RG8ki64PuzeJyh58osSn3rKe14bjMRX2@...>
      Date: Thu, 19 Jul 2007 14:57:04 +0000
      To: <listme@...>
      Subject: Open Relay Test Message
      From: postmaster@...


      This message is a test of your mail server to determine if
      it will perform relaying (re-sending) of e-mail messages
      for unauthorized outside parties. This capability, if
      enabled in your mail server, is widely considered to be
      serious flaw in mail server security.

      Your mail server is being tested for relaying capability
      because we have received mail from it and wish to determine
      its likelihood to be abused by spammers.

      Received: from localhost (localhost [127.0.0.1]) by smtp2.satnetcom.com
      (Postfix) with ESMTP id E82B6267486 for <listme@...>; Thu, 19
      Jul 2007 23:12:44 +0000 (UTC)
      X-Virus-Scanned: amavisd-new at satnetcom.com
      Received: from smtp2.satnetcom.com ([127.0.0.1]) by localhost
      (smtp2.satnetcom.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id
      t-XhWs7n-mcP for <listme@...>; Thu, 19 Jul 2007 23:12:44 +0000
      (UTC)
      Received: from noc.mediationtelecom.net (noc.saveho.com [84.96.74.32]) by
      smtp2.satnetcom.com (Postfix) with SMTP id B99F4267477 for
      <listme@...>; Thu, 19 Jul 2007 23:12:43 +0000 (UTC)
      Message-ID: <RG8ki64PuzeJyh58osSn3rKe14bjMRX2@...>
      Date: Thu, 19 Jul 2007 14:57:04 +0000
      To: <listme@...>
      Subject: Open Relay Test Message
      From: postmaster@...

      This message is a test of your mail server to determine if
      it will perform relaying (re-sending) of e-mail messages
      for unauthorized outside parties. This capability, if
      enabled in your mail server, is widely considered to be
      serious flaw in mail server security.

      Your mail server is being tested for relaying capability
      because we have received mail from it and wish to determine
      its likelihood to be abused by spammers

      Please advice. Thank you
    • Show all 13 messages in this topic