ungewollter DNS lookup bei exim4
Hallo Debianer,
mein exim4 ist/soll so konfiguriert sein/werden, dass alle Mail die ins
Internet sollen erst im queue zwischengespeichert werden, alle Mails an
locale user werden sofort zugestellt. Aus dem queue sollen sie dann per
Script bei Einwahl rausgeschickt. Das funktioniert auch soweit.
Nur aus irgendeinem Grund wird in dem Moment wo ich die Mail vom MUA an
exim4 schicke eine Verbindung ins Internet aufgebaut. Vermutlich irgendein
DNS lookup.
Kann man das unterbinden? Und wenn ja wie ?
Zur Hilfe hier mal meine exin4.conf:
CONFDIR = /etc/exim4
primary_hostname = Claudia.zuHause.de
domainlist local_domains = @:localhost:zuHause.de:Claudia.zuHause.de
domainlist relay_to_domains =
hostlist relay_from_hosts = 127.0.0.1 : 192.168.1.0/24
acl_smtp_connect = acl_check_connect
acl_smtp_mail = acl_check_mail
acl_smtp_rcpt = acl_check_rcpt
acl_smtp_data = acl_check_data
av_scanner = clamd:/var/run/clamav/clamd.ctl
never_users = root
ignore_bounce_errors_after = 2d
timeout_frozen_after = 7d
queue_smtp_domains = !+local_domains
disable_ipv6 = true
smtp_accept_max = 3
message_size_limit = 10M
begin acl
acl_check_connect:
deny message = Connection from host fail
! hosts = : 127.0.0.1 : 192.168.1.0/24
accept
acl_check_mail:
accept senders =
${lookup{$sender_address}lsearch{CONFDIR/inet.sender}{$sender_address}{}}
accept verify = sender
deny message = Sender not allowed
acl_check_rcpt:
deny message = Restricted characters in address
domains = +local_domains
local_parts = ^[.] : ^.*[@%!/|]
deny message = Restricted characters in address
domains = !+local_domains
local_parts = ^[./|] : ^.*[@%!] : ^.*/\\.\\./
accept local_parts = postmaster
domains = +local_domains
accept senders =
${lookup{$sender_address}lsearch{CONFDIR/inet.sender}{$sender_address}{}}
domains = ! +local_domains
require verify = sender
accept domains = +local_domains
endpass
verify = recipient
accept domains = +relay_to_domains
endpass
verify = recipient
# accept hosts = +relay_from_hosts
deny message = relay not permitted
acl_check_data:
warn message = X-Virus: FOUND ($malware_name)
demime = *
malware = *
warn condition = ${if !def:header_Date: {1}}
hosts = :
message = Date: $tod_full
accept
begin routers
smarthost_list:
debug_print = "R: smarthost list for $local_part@$domain"
driver = manualroute
domains = ! +local_domains
senders = wildlsearch;CONFDIR/inet.sender
transport = remote_smtp_list
route_list = *
${extract{1}{:}{${lookup{$sender_address_domain}lsearch{CONFDIR/smarthost.pa
sswd}{$value}fail}}}
host_find_failed = defer
no_more
system_aliases:
debug_print = "R: system aliases for $local_part@$domain"
driver = redirect
allow_fail
allow_defer
data = ${lookup{$local_part}lsearch{/etc/aliases}}
file_transport = address_file
pipe_transport = address_pipe
localuser:
debug_print = "R: localuser for $local_part@$domain"
driver = accept
domains = +local_domains
check_local_user
transport = procmail_pipe
cannot_route_message = Unknown user
begin transports
remote_smtp:
debug_print = "T: smtp for $local_part@$domain"
driver = smtp
remote_smtp_list:
debug_print = "T: smtp list for $local_part@$domain"
driver = smtp
hosts_try_auth =
${extract{1}{:}{${lookup{$sender_address_domain}lsearch{CONFDIR/smarthost.pa
sswd}{$value}fail}}}
address_pipe:
debug_print = "T: address pipe for $local_part@$domain"
driver = pipe
return_output
address_file:
debug_print = "T: address file for $local_part@$domain"
driver = appendfile
delivery_date_add
envelope_to_add
return_path_add
procmail_pipe:
debug_print = "T: procmail pipe for $local_part@$domain"
driver = pipe
path = "/bin:/usr/bin:/usr/local/bin"
command = "/usr/bin/procmail"
user = $local_part
return_path_add
delivery_date_add
envelope_to_add
begin retry
* * F,2h,15m; G,16h,1h,1.5; F,4d,6h
begin authenticators
plain:
driver = plaintext
public_name = PLAIN
client_send =
"^${extract{1}{::}{${lookup{$sender_address}lsearch{CONFDIR/inet.sender}{$va
lue}fail}}}\
^${extract{2}{::}{${lookup{$sender_address}lsearch{CONFDIR/inet.sender}{$val
ue}fail}}}"
server_condition = \
${if eq {${readsocket{/var/run/courier/authdaemon/socket}\
{AUTH
${strlen:exim\nlogin\n$2\n$3\n}\nexim\nlogin\n$2\n$3\n}}}{FAIL\n}{no}{yes}}
server_set_id = $2
server_advertise_condition = ${if eq{$tls_cipher}{}{}{*}}
login:
driver = plaintext
public_name = LOGIN
client_send = ":
${extract{1}{::}{${lookup{$sender_address}lsearch{CONFDIR/inet.sender}{$valu
e}fail}}} \
:
${extract{2}{::}{${lookup{$sender_address}lsearch{CONFDIR/inet.sender}{$valu
e}fail}}}"
server_prompts = Username:: : Password::
server_condition = ${if eq
{${readsocket{/var/run/courier/authdaemon/socket} \
{AUTH
${strlen:exim\nlogin\n$1\n$2\n}\nexim\nlogin\n$1\n$2\n}}}{FAIL\n}{no}{yes}}
server_set_id = $1
server_advertise_condition = ${if eq{$tls_cipher}{}{}{*}}
cram_md5:
driver = cram_md5
public_name = CRAM-MD5
client_name =
${extract{1}{:}{${lookup{$sender_address}lsearch{CONFDIR/inet.sender}{$value
}fail}}}
client_secret =
${extract{2}{:}{${lookup{$sender_address}lsearch{CONFDIR/inet.sender}{$value
}fail}}}
Reply to: