LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Networking (http://www.linuxquestions.org/questions/linux-networking-3/)
-   -   What so wrong about my mail headers? /a newbie question/ (http://www.linuxquestions.org/questions/linux-networking-3/what-so-wrong-about-my-mail-headers-a-newbie-question-449842/)

GSMD 05-30-2006 05:34 AM

What so wrong about my mail headers? /a newbie question/
 
I've got a mailserver (postfix + dovectot) installed behind nat.
There is no problem receiving mail but outcoming mail gets blocked time to time.
Could you please give a hint what so wrong in the headers of outgoing e-mails?

|the domain names, e-mails and ips are changed for security reasons, mydomain.ay is an internal domain name|

Code:

Return-Path: <user@mydomain.com.ua>
X-Flags: 0000
Delivered-To: GMX delivery to samplemail@gmx.net
Received: (qmail invoked by alias); 30 May 2006 09:57:04 -0000
Received: from relay02.kiev.sovam.com (EHLO relay02.kiev.sovam.com) [62.64.120.197]
  by mx0.gmx.net (mx027) with SMTP; 30 May 2006 11:57:04 +0200
Received: from [62.64.105.99] (helo=62.64.105.99)
        by relay02.kiev.sovam.com with esmtp (Exim 4.60)
        (envelope-from <user@mydomain.com.ua>)
        id 1Fl0yF-0009Ty-0H
        for samplemail@gmx.net; Tue, 30 May 2006 12:57:03 +0300
Received: from webmail.mydomain.com.ua (smtp.mydomain.ay [10.1.1.242])
        by mail.phobos.mydomain.ay (Postfix) with ESMTP id 572FE1A2830
        for <samplemail@gmx.net>; Tue, 30 May 2006 09:56:34 +0000 (UTC)
Received: from 10.1.0.7
        (SquirrelMail authenticated user user@mydomain.com.ua)
        by webmail.mydomain.com.ua with HTTP;
        Tue, 30 May 2006 13:02:26 +0300 (EEST)
Message-ID: <2030.10.1.0.7.1148983346.squirrel@webmail.mydomain.com.ua>
Date: Tue, 30 May 2006 13:02:26 +0300 (EEST)
Subject: lol
From: user@mydomain.com.ua
To: samplemail@gmx.net
User-Agent: SquirrelMail/1.5.1
MIME-Version: 1.0
Content-Type: text/plain;charset=koi8-r
Content-Transfer-Encoding: 8bit
X-Scanner-Signature: aaaa698a97d8009456dac6099b1a04d1
X-DrWeb-checked: yes
X-SpamTest-Info: Profile: Formal (378/060526)
X-SpamTest-Info: Profile: Detect Soft No RBL (4/030526)
X-SpamTest-Info: {received from trusted relay}
X-SpamTest-Info: Profile: SysLog
X-SpamTest-Info: Profile: Marking - Keywords (2/030321)
X-SpamTest-Method: Local Lists
X-SpamTest-Status: Trusted
X-SpamTest-Version: SMTP-Filter Version 2.1.1 [0150], SpamtestISP/Release
X-GMX-Antivirus: -1 (not scanned, may not use virus scanner)
X-GMX-Antispam: 0 (Mail was not recognized as spam)
X-GMX-Notified: yes
X-GMX-UID: wyFOdZt6Iyd1B0ImI2Zr+vdaa2FkZhVF

Thank you.

peter_robb 05-30-2006 07:57 AM

Show an example from the Postfix logs showing a reject..

GSMD 05-30-2006 08:19 AM

It's not rejected but put to the Spam folder on the client side.
That's the reason I think there is possibly smth wrong with headers.

peter_robb 05-30-2006 08:32 AM

Most likely coz your MTA helo is only a number, rather than a fqdn.

It has tagged the mail as NOT SPAM so another filter is operating.

Try adding [ ] around your helo number to make it [62.64.105.99]

GSMD 05-30-2006 09:16 AM

Thank you, I'll try that.
Is that helo important at all so that I could safely delete it?
Is it possible with Postfix to remove Received: from blocks harmlessly (as gmail does)?

Thanks for such a quick responses! :)

peter_robb 05-30-2006 09:43 AM

The helo is vital for anti-spam software..
If you don't have it, your chances of being rejected are much greater.

It is a part of the email rfc and necessary, as are the Received Headers.
They are added as mail comes into an MTA server, so you don't get to control them.

If you add a content filter to your Postfix, eg amavisd-new, you can strip the local parts so that only the amavis Received header is added by Postfix.
This is against the rfc, but necessary to avoid giving away your local net info.

GSMD 05-30-2006 10:02 AM

Thank you. Perfectly clear.
One last question: should i put mail.domain.com. or just domain.com. to helo? Both domains share the same ip.

P.S. Mail RFC can be found at http://www.lemis.com/email/email-rfc.html

peter_robb 05-30-2006 10:09 AM

You need to have something that can resolve correctly..
The helo is the fqdn of the pc connecting, so the reverse dns must work as well.

The headers you posted show that your ip number doesn't resolve to a fqdn, so just use the ip address inside [ ]

GSMD 05-30-2006 10:13 AM

This will be fixed. Thaks again.


All times are GMT -5. The time now is 12:27 AM.