Can some one help me ? I lose a lot of mail (near 30 per hour !) from
certains servers ; in logs I found always alert like that :
Mar 27 20:04:08 serveur sendmail[32289]: NOQUEUE: [xxx.xxx.xxx.xxx] did not
issue MAIL/EXPN/VRFY/ETRN during connection to Daemon0
Does anybody ever had this problem ? Thanks for your help
Gui
Looks more like someone who is constantly scanning your box and not trying
to send mail.
--
GertJan
Running SuSE 7.2 with kernel 2.4.19-pre3-ac4-preempt
11:46pm up 3 days, 7:15, 0 users, load average: 0.00, 0.02, 0.00
>Guizlamoui wrote:
>
>>Can some one help me ? I lose a lot of mail (near 30 per hour !) from
>>certains servers ; in logs I found always alert like that :
>>Mar 27 20:04:08 serveur sendmail[32289]: NOQUEUE: [xxx.xxx.xxx.xxx] did
>>not issue MAIL/EXPN/VRFY/ETRN during connection to Daemon0
>>
>>Does anybody ever had this problem ? Thanks for your help
>>
>
>Looks more like someone who is constantly scanning your box and not trying
>to send mail.
>
Is you sendmail compiled with tcpwrappers support ?
sendmail -d0.1 -bv root | grep TCP
--
Andrzej (Andrew) A. Filip an...@box43.pl http://www.polbox.com/a/anfi
366A 5DD7 7707 379C 9251 32AE C948 0BD2 7D99 688A expires: 2003-01-25
I may disagree with the following *random epigram* :
A woman shouldn't have to buy her own perfume.
-- Maurine Lewis
Note, This can also be manually accomplished through the Windows Telnet
application. Just hit the Enter key a few times after the 220 banner has
appeared and this same error message can be produced.
--
Best Regards,
Don Kelloway
http://www.commodon.com
For *your* protection, visit http://www.commodon.com/threat to learn about
Back Orifice, NetBus, SubSeven and a few others. All of which are "Threats
to Your Security on the Internet".
"Guizlamoui" <guillaum...@free.fr> wrote in message
news:3ca23903$1$11120$626a...@news.free.fr...
Any ideas?
Alex Brett
alex_...@hotmail.com
"Don Kelloway" <dkel...@commodon.com> wrote in message
news:Me7t8.34204$CA6.4...@newsread1.prod.itd.earthlink.net...
I suggest you run the primary server with -O LogLevel=15
That should log the smtp dialog, and might give you a better idea as
to what is happening.
Apr 11 19:46:00 Server sendmail[7564]: NOQUEUE: connect from
[217.207.35.195]
Apr 11 19:46:00 Server sendmail[7564]: SASL: available mech=PLAIN LOGIN
ANONYMOUS, allowed mech=GSSAPI KERBEROS_V4 DIGEST-MD5 CRAM-MD5
Apr 11 19:46:00 Server sendmail[7564]: g3BIk0l07564: --> 220
localhost.localdomain ESMTP Sendmail 8.11.6/8.11.6; Thu, 11 Apr 2002
19:46:00 +0100
Apr 11 19:46:01 Server sendmail[7564]: g3BIk0l07564: <-- EHLO
localhost.localdomain
Apr 11 19:46:01 Server sendmail[7564]: g3BIk0l07564: -->
250-localhost.localdomain Hello [217.207.35.195], pleased to meet you
Apr 11 19:46:01 Server sendmail[7564]: g3BIk0l07564: -->
250-ENHANCEDSTATUSCODES
Apr 11 19:46:01 Server sendmail[7564]: g3BIk0l07564: --> 250-8BITMIME
Apr 11 19:46:01 Server sendmail[7564]: g3BIk0l07564: --> 250-SIZE
Apr 11 19:46:01 Server sendmail[7564]: g3BIk0l07564: --> 250-DSN
Apr 11 19:46:01 Server sendmail[7564]: g3BIk0l07564: --> 250-ONEX
Apr 11 19:46:01 Server sendmail[7564]: g3BIk0l07564: --> 250-ETRN
Apr 11 19:46:01 Server sendmail[7564]: g3BIk0l07564: --> 250-XUSR
Apr 11 19:46:01 Server sendmail[7564]: g3BIk0l07564: --> 250 HELP
Apr 11 19:46:01 Server sendmail[7564]: g3BIk0l07564: <-- QUIT
Apr 11 19:46:01 Server sendmail[7564]: g3BIk0l07564: --> 221 2.0.0
localhost.localdomain closing connection
Apr 11 19:46:01 Server sendmail[7564]: NOQUEUE: [217.207.35.195] did not
issue MAIL/EXPN/VRFY/ETRN during connection to MTA
Anybody any ideas?
Thanks in advance,
Alex Brett
alex_...@hotmail.com
"Neil W Rickert" <ricke...@cs.niu.edu> wrote in message
news:a94bg2$ahs$1...@husk.cso.niu.edu...
This process is what I had described in an earlier post on this subject.
There is nothing to be concerned with in regards to the NOQUEUE message
itself, but what you should be concerned with, is that somone or something
at IP 217.207.35.195 was "probing" the server. Of course, this could be
nothing to be concerned with as well...
--
Best Regards,
Don Kelloway
http://www.commodon.com
For *your* protection, visit http://www.commodon.com/threat to learn about
Back Orifice, NetBus, SubSeven and a few others. All of which are "Threats
to Your Security on the Internet".
"Alex Brett" <alex_...@hotmail.com> wrote in message
news:fUkt8.9008$C21.1...@news6-win.server.ntlworld.com...
Alex Brett
alex_...@hotmail.com
"Don Kelloway" <dkel...@commodon.com> wrote in message
news:t2tt8.1966$L1.1...@newsread2.prod.itd.earthlink.net...
> Apr 11 19:46:01 Server sendmail[7564]: g3BIk0l07564: --> 250 HELP
> Apr 11 19:46:01 Server sendmail[7564]: g3BIk0l07564: <-- QUIT
> Anybody any ideas?
Check the same on the secondary server. Run
date | sendmail -O LogLevel=14 -v postm...@primary.server
Check the output and the logfile.
--
If you feel the urgent wish to send me a courtesy copy of a Usenet
posting, then make sure it's recognizable as such!
The FAQ: http://www.sendmail.org/faq/ Before you ask.
Alex Brett
alex_...@hotmail.com
"Alex Brett" <alex_...@hotmail.com> wrote in message
news:V3At8.12263$C21.2...@news6-win.server.ntlworld.com...
--
Best Regards,
Don Kelloway
http://www.commodon.com
For *your* protection, visit http://www.commodon.com/threat to learn about
Back Orifice, NetBus, SubSeven and a few others. All of which are "Threats
to Your Security on the Internet".
"Alex Brett" <alex_...@hotmail.com> wrote in message
news:V3At8.12263$C21.2...@news6-win.server.ntlworld.com...
Getting a similar message from my upstream provider. telstra.net . They certainly aren't a bogus company being
Australia's major telco.
but like you - I have no idea what it means.
bc
Just a thought,
Alex Brett
alex_...@hotmail.com
"Merlin" <rob...@quantum-radio.net.au> wrote in message
news:AcQt8.15$Rv5....@nsw.nnrp.telstra.net...
robert
"Alex Brett" <alex_...@hotmail.com> wrote in message news:4iSt8.12178$tZ1.3...@news2-win.server.ntlworld.com...
Hope this helps,
Alex Brett
alex_...@hotmail.com
"Merlin" <rob...@quantum-radio.net.au> wrote in message
news:3oSt8.3$zF5...@nsw.nnrp.telstra.net...