greylist embargo not ending

Bolmerg-Berliner Ludger - Munich-MR lbolmerg@munichre.com
Mon May 3 11:56:47 UTC 2004


I have an issue with messages (no spam) coming from a fairly big ISP which do not leave the greylist embargo.

Here is an example from the sendmail maillog (sender and recipient addresses have been modified):

May  1 13:24:34 netserv2 sm-mta-fast[44261]: i41BOX9v044261: from=<xxxxxxxxxxxxx
@gmx.net>, size=2196, class=0, nrcpts=1, msgid=<18217.1083410670@www48.gmx.net>,
 proto=SMTP, daemon=MTA, relay=mail.gmx.de [213.165.64.20]
May  1 13:24:43 netserv2 sm-mta-fast[44261]: i41BOX9v044261: to=<yyyyyy@munichre
.com>, delay=00:00:10, pri=32196, stat=mail i41BOX9v044261 from 213.165.64.20 te
mporary greylist embargoed

May  1 13:31:14 netserv2 sm-mta-fast[44628]: i41BVD9v044628: from=<xxxxxxxxxxxxx
@gmx.net>, size=2197, class=0, nrcpts=1, msgid=<18217.1083410670@www48.gmx.net>,
 proto=SMTP, daemon=MTA, relay=mail.gmx.de [213.165.64.20]
May  1 13:31:15 netserv2 sm-mta-fast[44628]: i41BVD9v044628: to=<yyyyyy@munichre
.com>, delay=00:00:02, pri=32197, stat=mail i41BVD9v044628 from 213.165.64.20 te
mporary greylist embargoed

May  1 13:51:13 netserv2 sm-mta-fast[45852]: i41BpD9v045852: from=<xxxxxxxxxxxxx
@gmx.net>, size=2196, class=0, nrcpts=1, msgid=<18217.1083410670@www48.gmx.net>,
 proto=SMTP, daemon=MTA, relay=pop.gmx.de [213.165.64.20]
May  1 13:51:19 netserv2 sm-mta-fast[45852]: i41BpD9v045852: to=<yyyyyy@munichre
.com>, delay=00:00:06, pri=32196, stat=mail i41BpD9v045852 from 213.165.64.20 te
mporary greylist embargoed

May  1 14:24:34 netserv2 sm-mta-fast[47857]: i41COX9v047857: from=<xxxxxxxxxxxxx
@gmx.net>, size=2197, class=0, nrcpts=1, msgid=<18217.1083410670@www48.gmx.net>,
 proto=SMTP, daemon=MTA, relay=mail.gmx.de [213.165.64.20]
May  1 14:24:38 netserv2 sm-mta-fast[47857]: i41COX9v047857: to=<yyyyyy@munichre
.com>, delay=00:00:05, pri=32197, stat=mail i41COX9v047857 from 213.165.64.20 te
mporary greylist embargoed 

It is obviously the same message that gets embargoed.  dccd is running with -Gon,270seconds,7days,63days  Option -Gweak gives the same result. 
The msgid is always the same.  For some reason the size value in the maillog file differs sometimes.  A reverse lookup of the IP address comes back with 5 different PTR records which I think is unusual.  Each of the individuell host names resolves to the same IP address.  

#host 213.165.64.20
20.64.165.213.IN-ADDR.ARPA domain name pointer mail.gmx.de
20.64.165.213.IN-ADDR.ARPA domain name pointer mail.gmx.net
20.64.165.213.IN-ADDR.ARPA domain name pointer pop.gmx.de
20.64.165.213.IN-ADDR.ARPA domain name pointer pop.gmx.net
20.64.165.213.IN-ADDR.ARPA domain name pointer imap.gmx.net 

#host mail.gmx.de
mail.gmx.de has address 213.165.64.20
#host mail.gmx.net
mail.gmx.net has address 213.165.64.20
#host pop.gmx.de
pop.gmx.de has address 213.165.64.20
#host pop.gmx.net
pop.gmx.net has address 213.165.64.20
#host imap.gmx.net
imap.gmx.net has address 213.165.64.20

Any idea why the message is stuck in the embargo?

Thanks
Ludger




More information about the DCC mailing list

Contact vjs@rhyolite.com by mail or use the form.