Problem mit Maia Mailguard nach Update auf Lenny


funnymob

Registered User
Hallo zusammen,

ich habe ein Lenny Update gemacht (Etch->Lenny). Nach ein paar Anfangsschwierigkeiten läuft nun nahezu alles. Aber ich habe noch ein Problem mit Spamfilter Maia Mailguard.

Meine Emails kommen an und werden von Amavis und PolicyDWeight gefiltert, aber die Mails sind nicht im Maia Mailguard.
Email-Header:
...
X-Virus-Scanned: Debian amavisd-new at ...
...
X-policyd-weight: NOT_IN_SBL_XBL_SPAMHAUS=-1.5 NOT_IN_SPAMCOP=-1.5 NOT_IN_BL_NJABL=-1.5 CL_IP_EQ_HELO_IP=-2 (check from: .gmx. - helo: .mail.gmx. - helo-domain: .gmx.) FROM/MX_MATCHES_HELO(DOMAIN)=-2; rate: -8.
....

In der Datei etc/amavis/conf.d/15-content_filter_mode habe ich Viren und Spamfilterung aktiviert:
@bypass_virus_checks_maps = (
\%bypass_virus_checks, \@bypass_virus_checks_acl, \$bypass_virus_checks_re);
@bypass_spam_checks_maps = (
\%bypass_spam_checks, \@bypass_spam_checks_acl, \$bypass_spam_checks_re);

Wo kann ich denn MaiaMailguard wieder einbinden? Ich habe leider noch nichts gefunden.

mail.err
-> ist leer

mail.log-Auszug:
Code:
...
Mar  5 09:27:21 vs149039 pop3d-ssl: Connection, ip=[::ffff:80.187.99.147]
Mar  5 09:27:23 vs149039 pop3d-ssl: LOGIN, [email protected], ip=[::ffff:80.187.99.147], port=[18526]
Mar  5 09:29:03 vs149039 postfix/smtpd[9834]: initializing the server-side TLS engine
Mar  5 09:29:04 vs149039 postfix/smtpd[9834]: connect from c-71-59-171-217.hsd1.wa.comcast.net[71.59.171.217]
Mar  5 09:29:05 vs149039 postfix/policyd-weight[9569]: weighted check:  IN_DYN_PBL_SPAMHAUS=3.25 NOT_IN_SBL_XBL_SPAMHAUS=-1.5 NOT_IN_SPAMCOP=-1.5 NOT_IN_BL_NJABL=-1.5 IN_IX_MANITU=4.35 CL_IP_NE_HELO=9.1 RESOLVED_IP_IS_NOT_HELO=1.5 (check from: .web. - helo: .web. - helo-domain: .web.)  MAIL_SEEMS_FORGED=2.5; <client=71.59.171.217> <helo=web.de> <[email protected]> <[email protected]>; rate: 16.2 
Mar  5 09:29:05 vs149039 postfix/policyd-weight[9569]: decided action=550 Mail appeared to be SPAM or forged. Ask your Mail/DNS-Administrator to correct HELO and DNS MX settings or to get removed from DNSBLs; MTA helo: web.de, MTA hostname: c-71-59-171-217.hsd1.wa.comcast.net[71.59.171.217] (helo/hostname mismatch); <client=71.59.171.217> <helo=web.de> <[email protected]> <[email protected]>; delay: 0s 
Mar  5 09:29:05 vs149039 postfix/smtpd[9834]: NOQUEUE: reject: RCPT from c-71-59-171-217.hsd1.wa.comcast.net[71.59.171.217]: 550 5.7.1 <[email protected]>: Recipient address rejected: Mail appeared to be SPAM or forged. Ask your Mail/DNS-Administrator to correct HELO and DNS MX settings or to get removed from DNSBLs; MTA helo: web.de, MTA hostname: c-71-59-171-217.hsd1.wa.comcast.net[71.59.171.217] (helo/hostname mismatch); from=<[email protected]> to=<[email protected]> proto=SMTP helo=<web.de>
Mar  5 09:29:05 vs149039 postfix/smtpd[9834]: lost connection after RCPT from c-71-59-171-217.hsd1.wa.comcast.net[71.59.171.217]
Mar  5 09:29:05 vs149039 postfix/smtpd[9834]: disconnect from c-71-59-171-217.hsd1.wa.comcast.net[71.59.171.217]
Mar  5 09:32:23 vs149039 pop3d-ssl: TIMEOUT, [email protected], ip=[::ffff:80.187.99.147], port=[18526], top=0, retr=0, rcvd=6, sent=25, time=300
Mar  5 09:32:25 vs149039 postfix/anvil[9835]: statistics: max connection rate 1/60s for (smtp:71.59.171.217) at Mar  5 09:29:04
Mar  5 09:32:25 vs149039 postfix/anvil[9835]: statistics: max connection count 1 for (smtp:71.59.171.217) at Mar  5 09:29:04
Mar  5 09:32:25 vs149039 postfix/anvil[9835]: statistics: max cache size 1 at Mar  5 09:29:04
Mar  5 09:34:48 vs149039 pop3d: Connection, ip=[::ffff:127.0.0.1]
Mar  5 09:34:48 vs149039 pop3d: LOGIN, [email protected], ip=[::ffff:127.0.0.1], port=[55657]
Mar  5 09:34:48 vs149039 pop3d: LOGOUT, [email protected], ip=[::ffff:127.0.0.1], port=[55657], top=0, retr=0, rcvd=6, sent=30, time=0
Mar  5 09:35:06 vs149039 postfix/smtpd[17939]: initializing the server-side TLS engine
Mar  5 09:35:06 vs149039 postfix/smtpd[17939]: connect from ppp146-81.tis-dialog.ru[83.219.146.81]
Mar  5 09:35:08 vs149039 postfix/policyd-weight[9569]: weighted check:  IN_DYN_PBL_SPAMHAUS=3.25 IN_SBL_XBL_SPAMHAUS=4.35 NOT_IN_SPAMCOP=-1.5 NOT_IN_BL_NJABL=-1.5 IN_IX_MANITU=4.35; <client=83.219.146.81> <helo=gmail.com> <[email protected]> <[email protected]>; rate: 8.95 
Mar  5 09:35:08 vs149039 postfix/policyd-weight[9569]: decided action=550 Your MTA is listed in too many DNSBLs; check [url]http://www.robtex.com/rbl/83.219.146.81.html;[/url] <client=83.219.146.81> <helo=gmail.com> <[email protected]> <[email protected]>; delay: 1s 
Mar  5 09:35:08 vs149039 postfix/smtpd[17939]: NOQUEUE: reject: RCPT from ppp146-81.tis-dialog.ru[83.219.146.81]: 550 5.7.1 <[email protected]>: Recipient address rejected: Your MTA is listed in too many DNSBLs; check [url]http://www.robtex.com/rbl/83.219.146.81.html;[/url] from=<[email protected]> to=<[email protected]> proto=SMTP helo=<gmail.com>
Mar  5 09:35:09 vs149039 postfix/smtpd[17939]: lost connection after RCPT from ppp146-81.tis-dialog.ru[83.219.146.81]
Mar  5 09:35:09 vs149039 postfix/smtpd[17939]: disconnect from ppp146-81.tis-dialog.ru[83.219.146.81]
Mar  5 09:38:27 vs149039 postfix/smtpd[21867]: initializing the server-side TLS engine
Mar  5 09:38:29 vs149039 postfix/anvil[17940]: statistics: max connection rate 1/60s for (smtp:83.219.146.81) at Mar  5 09:35:06
Mar  5 09:38:29 vs149039 postfix/anvil[17940]: statistics: max connection count 1 for (smtp:83.219.146.81) at Mar  5 09:35:06
Mar  5 09:38:29 vs149039 postfix/anvil[17940]: statistics: max cache size 1 at Mar  5 09:35:06
Mar  5 09:38:44 vs149039 postfix/smtpd[21867]: warning: 81.214.6.206: hostname dsl81-214-1742.adsl.ttnet.net.tr verification failed: Name or service not known
Mar  5 09:38:44 vs149039 postfix/smtpd[21867]: connect from unknown[81.214.6.206]
Mar  5 09:38:44 vs149039 postfix/smtpd[21867]: setting up TLS connection from unknown[81.214.6.206]
Mar  5 09:38:44 vs149039 postfix/smtpd[21867]: unknown[81.214.6.206]: TLS cipher list "ALL:+RC4:@STRENGTH"
Mar  5 09:38:44 vs149039 postfix/smtpd[21867]: SSL_accept:before/accept initialization
Mar  5 09:38:44 vs149039 postfix/smtpd[21867]: SSL_accept:SSLv3 read client hello B
Mar  5 09:38:44 vs149039 postfix/smtpd[21867]: SSL_accept:SSLv3 write server hello A
Mar  5 09:38:44 vs149039 postfix/smtpd[21867]: SSL_accept:SSLv3 write certificate A
Mar  5 09:38:44 vs149039 postfix/smtpd[21867]: SSL_accept:SSLv3 write server done A
Mar  5 09:38:44 vs149039 postfix/smtpd[21867]: SSL_accept:SSLv3 flush data
Mar  5 09:38:44 vs149039 postfix/smtpd[21867]: SSL_accept:SSLv3 read client key exchange A
Mar  5 09:38:44 vs149039 postfix/smtpd[21867]: SSL_accept:SSLv3 read finished A
Mar  5 09:38:44 vs149039 postfix/smtpd[21867]: SSL_accept:SSLv3 write change cipher spec A
Mar  5 09:38:44 vs149039 postfix/smtpd[21867]: SSL_accept:SSLv3 write finished A
Mar  5 09:38:44 vs149039 postfix/smtpd[21867]: SSL_accept:SSLv3 flush data
Mar  5 09:38:44 vs149039 postfix/smtpd[21867]: Anonymous TLS connection established from unknown[81.214.6.206]: TLSv1 with cipher RC4-MD5 (128/128 bits)
Mar  5 09:38:45 vs149039 postfix/policyd-weight[9569]: weighted check:  IN_DYN_PBL_SPAMHAUS=3.25 NOT_IN_SBL_XBL_SPAMHAUS=-1.5 NOT_IN_SPAMCOP=-1.5 IN_BL_NJABL=4.25 CL_IP_NE_HELO=9 REV_IP_EQ_HELO_DOMAIN=-1.25 (check from: .ttnet. - helo: .ttnet. - helo-domain: .ttnet.)  FROM/MX_MATCHES_UNVR_HELO(DOMAIN)=-1.5; <client=81.214.6.206> <helo=ttnet.net.tr> <[email protected]> <[email protected]>; rate: 10.75 
Mar  5 09:38:45 vs149039 postfix/policyd-weight[9569]: decided action=550 Mail appeared to be SPAM or forged. Ask your Mail/DNS-Administrator to correct HELO and DNS MX settings or to get removed from DNSBLs; <client=81.214.6.206> <helo=ttnet.net.tr> <[email protected]> <[email protected]>; delay: 1s 
Mar  5 09:38:45 vs149039 postfix/smtpd[21867]: NOQUEUE: reject: RCPT from unknown[81.214.6.206]: 550 5.7.1 <[email protected]>: Recipient address rejected: Mail appeared to be SPAM or forged. Ask your Mail/DNS-Administrator to correct HELO and DNS MX settings or to get removed from DNSBLs; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<ttnet.net.tr>
Mar  5 09:38:45 vs149039 postfix/smtpd[21867]: disconnect from unknown[81.214.6.206]
Mar  5 09:38:47 vs149039 postfix/smtpd[21867]: connect from unknown[117.242.12.215]
Mar  5 09:38:47 vs149039 postfix/smtpd[21867]: lost connection after CONNECT from unknown[117.242.12.215]
Mar  5 09:38:47 vs149039 postfix/smtpd[21867]: disconnect from unknown[117.242.12.215]

Vielen Dank
Gruß
funnymob
 
Sieht so aus, als ob du das Paket amavisd-new installiert hättest. Das solltest du erst mal loswerden.
 
Hallo henk77,

danke für die Antwort.
Und ja laut TOP läuft amavisd-new
18160 amavis 16 0 55836 45m 3240 S 0 2.2 0:02.15 amavisd-new#

Doch was ist das Problem damit? Muss ich das deinstallieren? Wenn ja was muss ich dafür installieren?

Danke
gruß
funnymob
 
Mit loswerden war deinstallieren gemeint.

Installieren brauchst du sonst gar nichts. Maia müsste ja noch drauf sein.
 
Amavis habe ich deinstalliert und neu installiert.
Hat allerdings nichts gebracht. Die Mail werden gefiltert, doch ich sehe sie nicht im Maia Mailguard.
Kann mir jemand einen Tip geben, wo ich da suchen muss? Irgendwie habe ich das gefühl, dass die Mails nicht in der Maia Mailguard Datenbank gespeichter werden, ...

Danke
gruß
funnymob
 

Back
Top