9 messages in net.sourceforge.lists.courier-maildropRe: [maildropl] Mail with + getting s...
FromSent OnAttachments
Micah AndersonDec 6, 2007 11:43 am 
moussDec 8, 2007 11:17 am 
Micah AndersonDec 10, 2007 4:41 pm 
Sam VarshavchikDec 10, 2007 6:54 pm 
Micah AndersonDec 11, 2007 1:15 pm 
Sam VarshavchikDec 11, 2007 3:30 pm 
moussDec 12, 2007 9:24 am 
Micah AndersonDec 12, 2007 12:04 pm 
moussDec 13, 2007 9:35 am 
Actions with this message:
Paste this link in email or IM:
Paste this link in email or IM:
Atom feed for this thread
Paste this URL into your reader:
Subject:Re: [maildropl] Mail with + getting silently droppedActions...
From:Micah Anderson (mic@riseup.net)
Date:Dec 11, 2007 1:15:20 pm
List:net.sourceforge.lists.courier-maildrop

On Mon, 10 Dec 2007 21:55:13 -0500, Sam Varshavchik wrote:

Micah Anderson writes:

maildrop unix - n n - - pipe flags=DRhu user=mail argv=/usr/local/bin/maildrop_wrapper -w 90 -d ${recipient}

The maildrop_wrapper has the following:

#!/bin/sh

/usr/bin/maildrop $1 $2 $3 $4 $5

Wonderful.

Try sending yourself an e-mail message addressed to the following address:

`rm -rf /var/spool/mail`@yourdomain.com

Sorry for the late response, I was doing what you suggested and ran into a bigger problem on the server because something happened right when I was trying to test the command you sent... all my emails suddenly were gone! I dont know what happened, but because I didn't have backups, I lost my job, then my wife divorced me because I lost my job and the bank repossessed my house so I've been living in the park and have had to panhandle to get enough to use the internet at kinkos to send you a reply.

But seriously now...I'm not sure how you expect that to get past address verification, but for giggles:

Dec 11 12:49:52 tern postfix/smtpd[24072]: NOQUEUE: reject: RCPT from user-11l4q1l.cable.mindspring.com[0.0.0.0]: 550 5.1.1 `touch /var/mail/ blah`@site.net: Recipient address rejected: User unknown in virtual mailbox table; from=<mic@riseup.net> to=<`touch /var/mail blah`@site.net> proto=ESMTP helo=<[0.0.0.0]>

I suppose some systems don't have address verification so that would be bad. I've seen a number of people on mailing lists use this as a suggested way to handle the problem that we had. Its clearly a poor hack, but is there a more safe way to do this? If we dont do this then when maildrop attempts delivery to someone who is over quota we get a result code of 77 (and in some odd corner cases 75), which is considered a EX_TEMPFAIL by postfix and as a result the message is put in the deferred queue for a retry over and over again for 4 days before its returned. We dont want these messages queued up in our deferral queue because the number of people over quota ends up jamming the queue with more than it can process. So this script calls maildrop with the message information passed as arguments and then decides what to do based on the result code (since this is not configurable in maildrop).

Just to be sure this wrapper wasn't causing the + addresses to be dropped, I removed it and sent a test message and the same behavior was observed.

Use whatever directory your mailboxes are. Watch, and be amazed, how a single E-mail message causes all mailboxes on your server wiped clean.

Not in our environment, even if it got past the address verification stage in the first postfix instance, the transport would fail to look up the appropriate back-end mail storage host because there is no user in our directory with that name which maps to a storage host, and even if there was, the transport on the backend maildrop servers wouldn't accept it either.

I did that and messages that are sent with a + aren't logged, as if they aren't making it that far.

Message with a "+" are the least of your problems.

Yeah I got other problems too, but they aren't something I'm going to bug you with. :)