mail-service geht nicht mehr

[blob]

Letzte Nacht habe ich Programme auf neue Versionen upgedatet, seitdem geht mein e-mail-Service nicht mehr. Ich habe schon viel rumprobiert, ohne Erfolg.

Bei rausgehenden mails Fehlermeldung, aber sie kommen nicht zurück bzw. sind nirgends mehr auffindbar. Ebenso bei mails an einen anderen Benutzer auf meinem eigenen Rechner (wobei im Sendmail config -File aber als relais standardmäßig der Server des Providers steht, smtp.ool.fr, als Sicherheit gegen Mißbrauch für spam; unklar ob mails von/an meinem eigenen Rechner das relay passieren). Firewall momentan ausgeschaltet.

Beim Starten #sendmail -bd kommt eine Meldung: XSpamassasin: local socket name /var/run/spamass-milter.spck missing

Im Protokoll unten, beziehen sich die ersten Meldungen auf eingehende mails, die nächsten auf mails von mir werner@copaya.yi.org an meine externe mailbox beim Provider bzw. an root auf meinem Rechner

Oct 24 09:16:51 localhost sendmail[7342]: starting daemon (8.14.1): SMTP
Oct 24 09:16:51 localhost sendmail[7342]: STARTTLS=server: file /etc/mail/certs/smtp.cert.pem unsafe: No such file or directory
Oct 24 09:17:05 localhost sendmail[7343]: NOQUEUE: tcpwrappers (amhost2.amcham.com.br, 200.192.164.2) rejection
Oct 24 09:17:11 localhost sendmail[7344]: NOQUEUE: tcpwrappers (amhost2.amcham.com.br, 200.192.164.2) rejection
Oct 24 09:17:12 localhost sendmail[7345]: NOQUEUE: tcpwrappers (unknown, 85.104.118.156) rejection
Oct 24 09:17:19 localhost sendmail[7346]: NOQUEUE: tcpwrappers (amhost2.amcham.com.br, 200.192.164.2) rejection
Oct 24 09:19:20 localhost sendmail[7427]: l9OCJJxo007427: Authentication-Warning: monkey.is-a-geek.net: werner set sender to werner@copaya.yi.org using -f
Oct 24 09:19:21 localhost sendmail[7427]: l9OCJJxo007427: from=werner@copaya.yi.org, size=1019, class=0, nrcpts=1, msgid=<1193228358.7423@copaya.yi.org>, relay=werner@localhost
Oct 24 09:19:21 localhost sendmail[7428]: NOQUEUE: tcpwrappers (localhost, 127.0.0.1) rejection
Oct 24 09:19:21 localhost sendmail[7427]: l9OCJJxo007427: to=w.landgraf@ool.fr, ctladdr=werner@copaya.yi.org (500/100), delay=00:00:02, xdelay=00:00:00, mailer=relay, pri=31019, relay=[127.0.0.1] [127.0.0.1], dsn=5.0.0, stat=Service unavailable
Oct 24 09:19:21 localhost sendmail[7427]: l9OCJJxo007427: l9OCJJxp007427: DSN: Service unavailable
Oct 24 09:19:21 localhost sendmail[7427]: l9OCJJxp007427: to=werner@copaya.yi.org, delay=00:00:00, xdelay=00:00:00, mailer=relay, pri=32043, relay=[127.0.0.1], dsn=5.0.0, stat=Service unavailable
Oct 24 09:19:21 localhost sendmail[7427]: l9OCJJxp007427: l9OCJJxq007427: return to sender: Service unavailable
Oct 24 09:19:21 localhost sendmail[7427]: l9OCJJxq007427: to=postmaster, delay=00:00:00, xdelay=00:00:00, mailer=relay, pri=33067, relay=[127.0.0.1], dsn=5.0.0, stat=Service unavailable
Oct 24 09:19:21 localhost sendmail[7427]: l9OCJJxp007427: Losing ./qfl9OCJJxp007427: savemail panic
Oct 24 09:19:21 localhost sendmail[7427]: l9OCJJxp007427: SYSERR(werner): savemail: cannot save rejected email anywhere
Oct 24 09:24:23 localhost sendmail[7522]: l9OCOMva007522: Authentication-Warning: monkey.is-a-geek.net: werner set sender to werner@copaya.yi.org using -f
Oct 24 09:24:23 localhost sendmail[7522]: l9OCOMva007522: from=werner@copaya.yi.org, size=1022, class=0, nrcpts=1, msgid=<1193228661.7518@copaya.yi.org>, relay=werner@localhost
Oct 24 09:24:23 localhost sendmail[7523]: NOQUEUE: tcpwrappers (localhost, 127.0.0.1) rejection
Oct 24 09:24:23 localhost sendmail[7522]: l9OCOMva007522: to=root@copaya.yi.org, ctladdr=werner@copaya.yi.org (500/100), delay=00:00:01, xdelay=00:00:00, mailer=relay, pri=31022, relay=[127.0.0.1] [127.0.0.1], dsn=5.0.0, stat=Service unavailable
Oct 24 09:24:23 localhost sendmail[7522]: l9OCOMva007522: l9OCOMvb007522: DSN: Service unavailable
Oct 24 09:24:23 localhost sendmail[7522]: l9OCOMvb007522: to=werner@copaya.yi.org, delay=00:00:00, xdelay=00:00:00, mailer=relay, pri=32046, relay=[127.0.0.1], dsn=5.0.0, stat=Service unavailable
Oct 24 09:24:23 localhost sendmail[7522]: l9OCOMvb007522: l9OCOMvc007522: return to sender: Service unavailable
Oct 24 09:24:23 localhost sendmail[7522]: l9OCOMvc007522: to=postmaster, delay=00:00:00, xdelay=00:00:00, mailer=relay, pri=33070, relay=[127.0.0.1], dsn=5.0.0, stat=Service unavailable
Oct 24 09:24:23 localhost sendmail[7522]: l9OCOMvb007522: Losing ./qfl9OCOMvb007522: savemail panic
Oct 24 09:24:23 localhost sendmail[7522]: l9OCOMvb007522: SYSERR(werner): savemail: cannot save rejected email anywhere
Oct 24 09:24:42 localhost sendmail[7533]: l9OCOfDr007533: Authentication-Warning: monkey.is-a-geek.net: werner set sender to werner@copaya.yi.org using -f
Oct 24 09:24:43 localhost sendmail[7533]: l9OCOfDr007533: from=werner@copaya.yi.org, size=1029, class=0, nrcpts=1, msgid=<1193228681.7529@copaya.yi.org>, relay=werner@localhost
Oct 24 09:24:43 localhost sendmail[7534]: NOQUEUE: tcpwrappers (localhost, 127.0.0.1) rejection
Oct 24 09:24:43 localhost sendmail[7533]: l9OCOfDr007533: to=root@monkey.is-a-geek.net, ctladdr=werner@copaya.yi.org (500/100), delay=00:00:02, xdelay=00:00:00, mailer=relay, pri=31029, relay=[127.0.0.1] [127.0.0.1], dsn=5.0.0, stat=Service unavailable
Oct 24 09:24:43 localhost sendmail[7533]: l9OCOfDr007533: l9OCOfDs007533: DSN: Service unavailable
Oct 24 09:24:43 localhost sendmail[7533]: l9OCOfDs007533: to=werner@copaya.yi.org, delay=00:00:00, xdelay=00:00:00, mailer=relay, pri=32053, relay=[127.0.0.1], dsn=5.0.0, stat=Service unavailable
Oct 24 09:24:43 localhost sendmail[7533]: l9OCOfDs007533: l9OCOfDt007533: return to sender: Service unavailable
Oct 24 09:24:43 localhost sendmail[7533]: l9OCOfDt007533: to=postmaster, delay=00:00:00, xdelay=00:00:00, mailer=relay, pri=33077, relay=[127.0.0.1], dsn=5.0.0, stat=Service unavailable
Oct 24 09:24:43 localhost sendmail[7533]: l9OCOfDs007533: Losing ./qfl9OCOfDs007533: savemail panic
Oct 24 09:24:43 localhost sendmail[7533]: l9OCOfDs007533: SYSERR(werner): savemail: cannot save rejected email anywhere

Hier noch das Sendmail config-File (schon lange so, nicht geändert):

dnl# This is the a sendmail .mc file for Slackware with TLS support.
dnl# To generate the sendmail.cf file from this (perhaps after making
dnl# some changes), use the m4 files in /usr/share/sendmail/cf like this:
dnl#
dnl# cp sendmail-slackware-tls.mc /usr/share/sendmail/cf/config.mc
dnl# cd /usr/share/sendmail/cf
dnl# sh Build config.cf
dnl#
dnl# You may then install the resulting .cf file:
dnl# cp config.cf /etc/mail/sendmail.cf
dnl#
include(`../m4/cf.m4')
VERSIONID(`TLS supporting setup for Slackware Linux')dnl
OSTYPE(`linux')dnl
dnl#
define(`confMAX_RCPTS_PER_MESSAGE', 5)dnl
define(`confSMTP_LOGIN_MSG', `$j server ready at $b')dnl
dnl# You will need to create the certificates below with OpenSSL first:
define(`confCACERT_PATH', `/etc/mail/certs/')
define(`confCACERT', `/etc/mail/certs/CA.cert.pem')
define(`confSERVER_CERT', `/etc/mail/certs/smtp.cert.pem')
define(`confSERVER_KEY', `/etc/mail/certs/smtp.key.pem')
dnl# These settings help protect against people verifying email addresses
dnl# at your site in order to send you email that you probably don't want:
define(`confPRIVACY_FLAGS', `authwarnings,novrfy,noexpn,restrictqrun,goaway')dnl
define(`confCONNECTION_RATE_THROTTLE',2)dnl
dnl# Uncomment the line below to send outgoing mail through an external server:
define(`SMART_HOST',`smtp.ool.fr')
dnl# No timeout for ident:
define(`confTO_IDENT', `0')dnl
dnl# Enable the line below to use smrsh to restrict what sendmail can run:
dnl FEATURE(`smrsh',`/usr/sbin/smrsh')dnl
dnl# See the README in /usr/share/sendmail/cf for a ton of information on
dnl# how these options work:
FEATURE(`use_cw_file')dnl
FEATURE(`use_ct_file')dnl
FEATURE(`mailertable',`hash -o /etc/mail/mailertable.db')dnl
FEATURE(`virtusertable',`hash -o /etc/mail/virtusertable.db')dnl
FEATURE(`access_db', `hash -T<TMPF> /etc/mail/access')dnl
FEATURE(`blacklist_recipients')dnl
FEATURE(`local_procmail',`',`procmail -t -Y -a $h -d $u')dnl
FEATURE(`always_add_domain')dnl
FEATURE(`redirect')dnl

dnl# FEATURE(`local_lmtp') 
dnl#FEATURE(`nocanonify', `canonify_hosts')
dnl#CANONIFY_DOMAIN(`sendmail.org')
dnl#CANONIFY_DOMAIN_FILE(`/etc/mail/canonify-domains')
dnl #  at most 10 queue runners
define(`confMAX_QUEUE_CHILDREN', `20')
define(`confMAX_RUNNERS_PER_QUEUE', `5')
dnl #  run at most 10 concurrent processes for initial submission
define(`confFAST_SPLIT', `10')
dnl #  10 runners, split into at most 15 recipients per envelope
QUEUE_GROUP(`mqueue', `P=/var/spool/mqueue, R=5, r=15, F=f')

dnl # enable spam assassin
INPUT_MAIL_FILTER(`spamassassin', `S=local:/var/run/spamass-milter.sock, F=, T=C:15m;S:4m;R:4m;E:10m')

dnl# Turn this feature on if you don't always have DNS, or enjoy junk mail:
dnl FEATURE(`accept_unresolvable_domains')dnl
EXPOSED_USER(`root')dnl
dnl# Allow SASL authentication/relaying:
dnl# define(`confAUTH_OPTIONS', `A p y')dnl
dnl# define(`confAUTH_MECHANISMS', `LOGIN PLAIN DIGEST-MD5 CRAM-MD5')dnl
dnl# TRUST_AUTH_MECH(`LOGIN PLAIN DIGEST-MD5 CRAM-MD5')dnl
dnl# FEATURE(`no_default_msa')dnl
dnl# DAEMON_OPTIONS(`Port=smtp, Name=MTA')dnl
dnl# DAEMON_OPTIONS(`Port=smtps, Name=MSA-SSL, M=E')dnl
dnl# Also accept mail for localhost.localdomain:
dnl# LOCAL_DOMAIN(`localhost.localdomain')dnl
LOCAL_DOMAIN(`home.lan')dnl
LOCAL_DOMAIN(`localnet.lan')dnl
MAILER(local)dnl
MAILER(smtp)dnl
MAILER(procmail)dnl

 

[blob]

Ich habe mich den ganzen Tag wahnsinnig gesucht. Alle Probleme wie iptables, tcp_wrappers, spamassasin usw desinstalliert, sendmail re-installiert, das config-File gegen ein ganz primitives ohne Überprüfungen usw. gewechselt, usw. Ohne Erfolg. Nicht mal online-mails vom Typ #sendmail A@localhost <CR> irgendwas-eingetippt <CR> . gingen ...


Beim weiteren 'Sicherheits'-Abbau gings dann, nachdem ich in hosts.allow all:all:deny und in hosts.deny all:all gelöscht habe ...

Das lass ich auch jetzt alles so. Zuviel Sicherheit ist auch nicht gut

 

[marneus]

hosts.allow all:all:deny und in hosts.deny all:all

Isn Scherz, oder?!