Forum

This forum uses cookies
This forum makes use of cookies to store your login information if you are registered, and your last visit if you are not. Cookies are small text documents stored on your computer; the cookies set by this forum can only be used on this website and pose no security risk. Cookies on this forum also track the specific topics you have read and when you last read them. Please confirm whether you accept or reject these cookies being set.

A cookie will be stored in your browser regardless of choice to prevent you being asked this question again. You will be able to change your cookie settings at any time using the link in the footer.
Sentora Support Forums Sentora Forum Archives Sentora Public Support Forums v1.0.x General Support Forum v1.0.x v Dead.letter growing fast

Dead.letter growing fast
eirsik Offline
Sentora Member
*
OS: CentOS 7.2
Version: 1.0.3
Server: Dedicated Server
Posts: 13
Threads: 5
Joined: Jun 2016
Reputation: 0
Sex: Undisclosed
Thanks: 0
Given 2 thank(s) in 1 post(s)
#8
RE: Dead.letter growing fast
 11-13-2018, 09:25 PM (This post was last modified: 11-13-2018, 09:32 PM by eirsik.)
(11-13-2018, 10:07 AM)republicus Wrote: It would appear to me smtpd is trying to make a connection on port 25 to the IP 0.0.0.0 -- which your system is alerting as suspicious.

I think you should look through your configs for any mail settings that may be empty or explicitly set with the IP 0.0.0.0 and correct it.

Did you make changes to postfix configs manually? Maybe configure SSL/TLS with Postfix? If you cannot find the settings in Sentora config, also look there. (Hint: /etc/sentora/configs/postfix/main.csf - "mynetworks" setting)

Have you installed CSF or CSF as a module?
If your email is sending and receiving mail okay and you are unable to locate the problem connection to 0.0.0.0:25 -- you can instruct CSF to ignore this message and prevent it from altering you further while you investigate the cause.

Edit:
Code:
/etc/csf/csf.pignore
Note: The CSF module may place these settings within the Sentora config hierarchy.  You may need to adjust there.  I can't be sure since I do not have this module.


Add line:
Code:
/usr/libexec/postfix/smtpd


Restart CSF service:
Code:
systemctl restart csf


Hi,

In main.cf the only IP specified is the ones under mynetworks:

Code:
mynetworks = 127.0.0.1, 195.201.146.xxx, 176.9.3.xxx

I have modified the main.cf and master.cf to enable SSL on email server. But it has been working fine for months. It suddenly started doing this.
IP 0.0.0.0 is not mentioned anywhere. The closes is 127.0.0.1 which is in master.cf:

Code:
127.0.0.1:10025 inet n  -       y       -       -       smtpd
-o mynetworks=127.0.0.0/8

Yes I have CSF installed. It's a great security addition :-)
Is it CSF who is dumping all these log entries into the dead.letter file?
Find
Reply
Thanks given by:


Messages In This Thread
Dead.letter growing fast - by eirsik - 11-13-2018, 05:08 AM
RE: Dead.letter growing fast - by fearworks - 11-13-2018, 05:31 AM
RE: Dead.letter growing fast - by eirsik - 11-13-2018, 06:00 AM
RE: Dead.letter growing fast - by fearworks - 11-13-2018, 08:53 AM
RE: Dead.letter growing fast - by eirsik - 11-13-2018, 09:18 PM
RE: Dead.letter growing fast - by fearworks - 11-13-2018, 09:25 PM
RE: Dead.letter growing fast - by republicus - 11-13-2018, 10:07 AM
RE: Dead.letter growing fast - by eirsik - 11-13-2018, 09:25 PM
RE: Dead.letter growing fast - by republicus - 11-14-2018, 08:25 AM
RE: Dead.letter growing fast - by eirsik - 11-14-2018, 09:57 AM
RE: Dead.letter growing fast - by republicus - 11-14-2018, 11:47 PM

Possibly Related Threads…
Thread Author Replies Views Last Post
Is Sentora dead? rajeevrrs 2 3 ,970 12-17-2022, 09:20 AM
Last Post: TGates
Is Sentora Dead? Feilding Weather 0 2 ,338 07-04-2020, 03:11 AM
Last Post: Feilding Weather
Suhosin is a dead project. How will Sentora move on to PHP 7.x? worksmarter 16 44 ,151 07-28-2019, 03:37 PM
Last Post: Ron-e

Forum Jump:


Users browsing this thread: 8 Guest(s)