Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

mail server are relayed ?

1 view
Skip to first unread message

WeiHua.Deng

unread,
May 4, 2011, 2:52:54 AM5/4/11
to

Hi Everybody,

   i find a abnormal log in maillog file for postfix. a user can send email , non ip address and non from username  present in the log. how can i reslove that ?

 

[root@mail ~]# less /var/log/maillog |grep 608D536DA9C |more

May  3 18:10:57 mail postfix/pickup[23046]: 608D536DA9C: uid=1000 from=<>

May  3 18:10:57 mail postfix/cleanup[6315]: 608D536DA9C: message-id=<dovecot-13044...@mail.bestcheer.com>

May  3 18:10:57 mail postfix/qmgr[4702]: 608D536DA9C: from=<>, size=2914, nrcpt=2 (queue active)

May  3 18:10:58 mail postfix/smtp[24014]: 608D536DA9C: host mail.zhaopinmail.com[59.151.29.147] refused to talk to me: 554 m147.rela

y.zhaopin.com

May  3 18:10:58 mail postfix/smtp[24014]: 608D536DA9C: host mail.zhaopinmail.com[59.151.29.146] refused to talk to me: 554 m146.rela

y.zhaopin.com


 

-- 
Best Cheer (XiaMen) Stone  Works CO.,LTP.
Phone: 0592-7221600

Reindl Harald

unread,
May 4, 2011, 3:25:18 AM5/4/11
to

Am 04.05.2011 08:52, schrieb WeiHua.Deng:
> Hi Everybody,
>
> i find a abnormal log in maillog file for postfix. a user can send email , non ip address and non from username
> present in the log. how can i reslove that ?
>
> [root@mail ~]# less /var/log/maillog | grep 608D536DA9C |more
> May 3 18:10:57 mail postfix/pickup[23046]: 608D536DA9C: uid=1000 from=<>
> May 3 18:10:57 mail postfix/cleanup[6315]: 608D536DA9C: message-id=<dovecot-13044...@mail.bestcheer.com>

this is generated from dovecot i would say an from <> are susually bounces
has nothing to do with postfix since it does only what it should do
pickup the message and try to deliver


signature.asc

WeiHua.Deng

unread,
May 4, 2011, 8:46:57 PM5/4/11
to

Dear andreas,

  thanks for your reply, I know. thanks.

 

Deng

 

On Wed, 04 May 2011 11:10:24 +0200, lst_...@kwsoft.de wrote:

Zitat von "WeiHua.Deng" <den...@bestcheer.com>:




Hi Everybody,

i find a abnormal log in maillog file for postfix.
a user can send email , non ip address and non from username present in
the log. how can i reslove that ?

[root@mail ~]# less /var/log/maillog
|grep 608D536DA9C |more

May 3 18:10:57 mail postfix/pickup[23046]:
608D536DA9C: uid=1000 from=

The mail is submitted locally, so you can't get a IP address.
The empty sender may be because of a bounce which require the sender  
to be empty.

You should check who is using the user ID 1000 on your system and why  
the mails are created.

Regards

Andreas
0 new messages