Bug#394942: exim4-config: RCPT ACL prevents some legitimate relaying

William Steve Applegate wsapplegate at est.un.goret.info
Tue Oct 24 00:19:53 UTC 2006 

Package: exim4-config
Version: 4.63.20061010-1
Severity: normal


After upgrading my backup MX server, running Exim, mail stopped flowing
to the primary MX. The log file showed every mail being rejected with
`550 relay not permitted'. I traced this to the following directive in
/etc/exim4/conf.d/acl/30_exim4-config_check_rcpt:

  require
    message = relay not permitted
    domains = +local_domains : +relay_to_domains

The problem is, this line is placed _above_ the call to
CHECK_RCPT_LOCAL_ACL_FILE. In my setup, the file pointed by this option
contains the following configuration:

  accept
    condition = ${if match{${lookup dnsdb{mx=$domain}}}{ my.primary.mx.host(\\n|\$)}{yes}{no}}
    log_message = Permitted backup MX for $domain.

Which allows relaying to my domains without them being entered by hand
in the relay_to_domains option. Trouble is, due to the aforementioned
directive, this one is never evaluated. Could you please move the
no-relay directive below the call to CHECK_RCPT_LOCAL_ACL_FILE?


Thanks,
	-- W.

-- Package-specific info:
Exim version 4.63.20061010 #1 built 10-Oct-2006 17:04:55
Copyright (c) University of Cambridge 2006
Berkeley DB: Sleepycat Software: Berkeley DB 4.3.29: (September  6, 2005)
Support for: crypteq iconv() IPv6 PAM Perl GnuTLS move_frozen_messages Content_Scanning Old_Demime
Lookups: lsearch wildlsearch nwildlsearch iplsearch cdb dbm dbmnz dnsdb dsearch ldap ldapdn ldapm mysql nis nis0 passwd pgsql
Authenticators: cram_md5 cyrus_sasl dovecot plaintext spa
Routers: accept dnslookup ipliteral iplookup manualroute queryprogram redirect
Transports: appendfile/maildir/mailstore/mbx autoreply lmtp pipe smtp
Fixed never_users: 0
Size of off_t: 8
Configuration file is /var/lib/exim4/config.autogenerated

-- System Information:
Debian Release: testing/unstable
  APT prefers experimental
  APT policy: (600, 'experimental'), (550, 'unstable')
Architecture: i386 (i686)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.17-1-k7
Locale: LANG=fr_FR.UTF-8, LC_CTYPE=fr_FR.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to fr_FR.UTF-8)

Versions of packages exim4-config depends on:
ii  adduser                       3.99       Add and remove users and groups
ii  debconf [debconf-2.0]         1.5.6      Debian configuration management sy

exim4-config recommends no packages.

-- debconf information excluded

More information about the Pkg-exim4-maintainers mailing list