1

Topic: Mailing List Issue

==== REQUIRED BASIC INFO OF YOUR IREDMAIL SERVER ====
- iRedMail version (check /etc/iredmail-release)
==> 1.3.2
- Deployed with iRedMail Easy or the downloadable installer?
==>  downloadable installer
- Linux/BSD distribution name and version
==>  Debian Linux 9
- Store mail accounts in which backend (LDAP/MySQL/PGSQL)
==>  MySQL
- Web server (Apache or Nginx)
==> Nginx
- Manage mail accounts with iRedAdmin-Pro?
==> yes
- [IMPORTANT] Related original log or error message is required if you're experiencing an issue.
====

We have two servers one contains iredmail 1.3.2 version and has mlmmjadmin-3.0.4 version and other server with iredmail version 0.9 and has mlmmjadmin-2.1 version.

In server which contains  iredmail 0.9 version and mlmmjadmin-2.1 if subscribers has sent email to the mailing list it will bounce back with this error "Post to abc@domain name denied: subject" which is perfect and we want the same.

it has restriction only Moderators can send email to this list it works perfectly.

In the other server which contains iredmail 1.3.2 version and has mlmmjadmin-3.0.4 if subscribers has send email to the mailing list it will not bounce back and same email delivere to the all owners or Moderators for approval . We want that if subscribers has sent email to the mailing list it will bounce back with the error.

Please let us know what settings needs to do to resolve the issue into iredmail 1.3.2 version and has mlmmjadmin-3.0.4.

mailing list setting of the both server has been attached for ref.

Thanks
Sunil

Post's attachments

Screenshot_2021-04-08 Edit account profile.png 61.81 kb, file has never been downloaded. 

Screenshot_2021-04-08 Edit account profile2.png 62.31 kb, file has never been downloaded. 

You don't have the permssions to download the attachments of this post.

2

Re: Mailing List Issue

RajeshM wrote:

In the other server which contains iredmail 1.3.2 version and has mlmmjadmin-3.0.4 if subscribers has send email to the mailing list it will not bounce back and same email delivere to the all owners or Moderators for approval . We want that if subscribers has sent email to the mailing list it will bounce back with the error.

Go to the mailing list profile page in iRedAdmin-Pro, it should be easy to find the option. smile

----

Buy me a cup of coffee ($5) to support iRedMail:

buy me a cup of coffee

3

Re: Mailing List Issue

ZhangHuangbin wrote:
RajeshM wrote:

In the other server which contains iredmail 1.3.2 version and has mlmmjadmin-3.0.4 if subscribers has send email to the mailing list it will not bounce back and same email delivere to the all owners or Moderators for approval . We want that if subscribers has sent email to the mailing list it will bounce back with the error.

Go to the mailing list profile page in iRedAdmin-Pro, it should be easy to find the option. smile


Hi,

i have compare both server mailing list abc@abc.com is mailing list from iredmail 0.9 server and xyz@xyz.com is from iredmail 1.3 server both are exactly same.

Can you please let me know were should i change the setting.

Thanks
Sunil

4

Re: Mailing List Issue

Dear Sunil,

Could you please upgrade iRedAPD to the latest 5.0, and mlmmjadmin to 3.1 and try again?
Let me know if you still hae the issue.

----

Buy me a cup of coffee ($5) to support iRedMail:

buy me a cup of coffee

5 (edited by RajeshM 2021-04-19 15:16:45)

Re: Mailing List Issue

ZhangHuangbin wrote:

Dear Sunil,

Could you please upgrade iRedAPD to the latest 5.0, and mlmmjadmin to 3.1 and try again?
Let me know if you still hae the issue.

Hi,

we have created demo server with Debian 9 and install latest version of iredmail-1.4.0, iRedAPD-5.0 and mlmmjadmin-3.1 on to it,  still having same issue after done testing about mailing list.

In addition to this even if sender's email id is not in the subscribers or owners or Moderators list still sender can email it to the mailing list.

Also when i try to update new Moderator in iredmail-1.4.0 it gives me error "Error: Permission denied"

Subscribers getting updated properly.

Thanks
Sunil

6

Re: Mailing List Issue

RajeshM wrote:
ZhangHuangbin wrote:

Dear Sunil,

Could you please upgrade iRedAPD to the latest 5.0, and mlmmjadmin to 3.1 and try again?
Let me know if you still hae the issue.

Hi,

we have created demo server with Debian 9 and install latest version of iredmail-1.4.0, iRedAPD-5.0 and mlmmjadmin-3.1 on to it,  still having same issue after done testing about mailing list.

In addition to this even if sender's email id is not in the subscribers or owners or Moderators list still sender can email it to the mailing list.

Also when i try to update new Moderator in iredmail-1.4.0 it gives me error "Error: Permission denied"

Subscribers getting updated properly.

Thanks
Sunil

Any update on above.

7

Re: Mailing List Issue

RajeshM wrote:

Also when i try to update new Moderator in iredmail-1.4.0 it gives me error "Error: Permission denied"

This is a bug of iRedAdmin-Pro, i sent you download link of patched iRedAdmin-Pro moment ago, let me know if you didn't receive it.

RajeshM wrote:

we have created demo server with Debian 9 and install latest version of iredmail-1.4.0, iRedAPD-5.0 and mlmmjadmin-3.1 on to it,  still having same issue after done testing about mailing list.

I will try to reproduce it locally later and come back with a fix. Stay tuned, feel free to remind me if i didn't reply shortly.

----

Buy me a cup of coffee ($5) to support iRedMail:

buy me a cup of coffee

8

Re: Mailing List Issue

RajeshM wrote:

In the other server which contains iredmail 1.3.2 version and has mlmmjadmin-3.0.4 if subscribers has send email to the mailing list it will not bounce back and same email delivere to the all owners or Moderators for approval . We want that if subscribers has sent email to the mailing list it will bounce back with the error.

Is it same issue as this forum post?
https://forum.iredmail.org/post73341.html#p73341

----

Buy me a cup of coffee ($5) to support iRedMail:

buy me a cup of coffee

9

Re: Mailing List Issue

ZhangHuangbin wrote:
RajeshM wrote:

In the other server which contains iredmail 1.3.2 version and has mlmmjadmin-3.0.4 if subscribers has send email to the mailing list it will not bounce back and same email deliver to the all owners or Moderators for approval . We want that if subscribers has sent email to the mailing list it will bounce back with the error.

Is it same issue as this forum post?
https://forum.iredmail.org/post73341.html#p73341

Hi,

No. both are different issue.

https://forum.iredmail.org/post73341.html#p73341

the above link issue was related to the approval emails received to the multiple Moderators.

and this issue is related to the any one can post even if is not added in subscribers or owners or Moderators list.

Thanks
Sunil.

10

Re: Mailing List Issue

RajeshM wrote:
ZhangHuangbin wrote:
RajeshM wrote:

In the other server which contains iredmail 1.3.2 version and has mlmmjadmin-3.0.4 if subscribers has send email to the mailing list it will not bounce back and same email deliver to the all owners or Moderators for approval . We want that if subscribers has sent email to the mailing list it will bounce back with the error.

Is it same issue as this forum post?
https://forum.iredmail.org/post73341.html#p73341

Hi,

No. both are different issue.

https://forum.iredmail.org/post73341.html#p73341

the above link issue was related to the approval emails received to the multiple Moderators.

and this issue is related to the any one can post even if is not added in subscribers or owners or Moderators list.

Thanks
Sunil.


Hi,

Any update on above issue we are waiting fr response.

Thanks
Sunil

11

Re: Mailing List Issue

Did you see any error in iRedAPD log file? /var/log/iredapd/iredapd.log

----

Buy me a cup of coffee ($5) to support iRedMail:

buy me a cup of coffee

12

Re: Mailing List Issue

ZhangHuangbin wrote:

Did you see any error in iRedAPD log file? /var/log/iredapd/iredapd.log

Hi,

No error

############################

May  3 16:50:12 ns1 iredapd Starting iRedAPD (version: 5.0, backend: mysql), listening on 127.0.0.1:7777.
May  3 16:50:12 ns1 iredapd Loading plugin (priority: 100): reject_null_sender
May  3 16:50:12 ns1 iredapd Loading plugin (priority: 99): wblist_rdns
May  3 16:50:12 ns1 iredapd Loading plugin (priority: 90): reject_sender_login_mismatch
May  3 16:50:12 ns1 iredapd Loading plugin (priority: 80): greylisting
May  3 16:50:12 ns1 iredapd Loading plugin (priority: 60): throttle
May  3 16:50:12 ns1 iredapd Loading plugin (priority: 50): sql_alias_access_policy
May  3 16:50:12 ns1 iredapd Loading plugin (priority: 40): amavisd_wblist
May  3 16:50:12 ns1 iredapd Starting SRS sender rewriting channel, listening on 127.0.0.1:7778
May  3 16:50:12 ns1 iredapd Starting SRS recipient rewriting channel, listening on 127.0.0.1:7779
May  3 18:10:32 ns1 iredapd Starting iRedAPD (version: 5.0, backend: mysql), listening on 127.0.0.1:7777.
May  3 18:10:32 ns1 iredapd Loading plugin (priority: 100): reject_null_sender
May  3 18:10:32 ns1 iredapd Loading plugin (priority: 99): wblist_rdns
May  3 18:10:33 ns1 iredapd Loading plugin (priority: 90): reject_sender_login_mismatch
May  3 18:10:33 ns1 iredapd Loading plugin (priority: 80): greylisting
May  3 18:10:33 ns1 iredapd Loading plugin (priority: 60): throttle
May  3 18:10:33 ns1 iredapd Loading plugin (priority: 50): sql_alias_access_policy
May  3 18:10:33 ns1 iredapd Loading plugin (priority: 40): amavisd_wblist
May  3 18:10:33 ns1 iredapd Starting SRS sender rewriting channel, listening on 127.0.0.1:7778
May  3 18:10:33 ns1 iredapd Starting SRS recipient rewriting channel, listening on 127.0.0.1:7779
May 12 12:05:17 ns1 iredapd Starting iRedAPD (version: 5.0, backend: mysql), listening on 127.0.0.1:7777.
May 12 12:05:17 ns1 iredapd Loading plugin (priority: 100): reject_null_sender
May 12 12:05:17 ns1 iredapd Loading plugin (priority: 99): wblist_rdns
May 12 12:05:19 ns1 iredapd Loading plugin (priority: 90): reject_sender_login_mismatch
May 12 12:05:19 ns1 iredapd Loading plugin (priority: 80): greylisting
May 12 12:05:19 ns1 iredapd Loading plugin (priority: 60): throttle
May 12 12:05:19 ns1 iredapd Loading plugin (priority: 50): sql_alias_access_policy
May 12 12:05:19 ns1 iredapd Loading plugin (priority: 40): amavisd_wblist
May 12 12:05:19 ns1 iredapd Starting SRS sender rewriting channel, listening on 127.0.0.1:7778
May 12 12:05:19 ns1 iredapd Starting SRS recipient rewriting channel, listening on 127.0.0.1:7779

############################

Thanks
Sunil

13

Re: Mailing List Issue

Please turn on debug mode in iRedAPD, then reproduce the issue. We need detailed iRedAPD log for troubleshooting.
FYI: https://docs.iredmail.org/debug.iredapd.html

----

Buy me a cup of coffee ($5) to support iRedMail:

buy me a cup of coffee

14

Re: Mailing List Issue

ZhangHuangbin wrote:

Please turn on debug mode in iRedAPD, then reproduce the issue. We need detailed iRedAPD log for troubleshooting.
FYI: https://docs.iredmail.org/debug.iredapd.html

Hi,

Please check below logs

#################################

May 29 12:25:22 ns1 iredapd [policy] request=smtpd_access_policy
May 29 12:25:22 ns1 iredapd [policy] protocol_state=RCPT
May 29 12:25:22 ns1 iredapd [policy] protocol_name=ESMTP
May 29 12:25:22 ns1 iredapd [policy] client_address=192.168.0.115
May 29 12:25:22 ns1 iredapd [policy] client_name=unknown
May 29 12:25:22 ns1 iredapd [policy] client_port=50104
May 29 12:25:22 ns1 iredapd [policy] reverse_client_name=unknown
May 29 12:25:22 ns1 iredapd [policy] helo_name=INIC3ADMIN
May 29 12:25:22 ns1 iredapd [policy] sender=admin@abc.com
May 29 12:25:23 ns1 iredapd [policy] recipient=mlglst@abc.com
May 29 12:25:23 ns1 iredapd [policy] recipient_count=0
May 29 12:25:23 ns1 iredapd [policy] queue_id=
May 29 12:25:23 ns1 iredapd [policy] instance=10aa.60b1e557.c555c.0
May 29 12:25:23 ns1 iredapd [policy] size=0
May 29 12:25:23 ns1 iredapd [policy] etrn_domain=
May 29 12:25:23 ns1 iredapd [policy] stress=
May 29 12:25:23 ns1 iredapd [policy] sasl_method=LOGIN
May 29 12:25:23 ns1 iredapd [policy] sasl_username=admin@abc.com
May 29 12:25:23 ns1 iredapd [policy] sasl_sender=
May 29 12:25:23 ns1 iredapd [policy] ccert_subject=
May 29 12:25:23 ns1 iredapd [policy] ccert_issuer=
May 29 12:25:23 ns1 iredapd [policy] ccert_fingerprint=
May 29 12:25:23 ns1 iredapd [policy] ccert_pubkey_fingerprint=
May 29 12:25:23 ns1 iredapd [policy] encryption_protocol=TLSv1.2
May 29 12:25:23 ns1 iredapd [policy] encryption_cipher=ECDHE-RSA-AES256-SHA384
May 29 12:25:23 ns1 iredapd [policy] encryption_keysize=256
May 29 12:25:23 ns1 iredapd [policy] policy_context=
May 29 12:25:28 ns1 iredapd --> Apply plugin: reject_null_sender
May 29 12:25:28 ns1 iredapd <-- Result: DUNNO
May 29 12:25:28 ns1 iredapd --> Apply plugin: wblist_rdns
May 29 12:25:28 ns1 iredapd Found SASL username, bypass rDNS check for outbound.
May 29 12:25:28 ns1 iredapd <-- Result: DUNNO
May 29 12:25:28 ns1 iredapd --> Apply plugin: reject_sender_login_mismatch
May 29 12:25:28 ns1 iredapd Sender: admin@abc.com, SASL username: admin@abc.com
May 29 12:25:28 ns1 iredapd SKIP: sender == sasl username.
May 29 12:25:28 ns1 iredapd <-- Result: DUNNO
May 29 12:25:28 ns1 iredapd --> Apply plugin: greylisting
May 29 12:25:28 ns1 iredapd Found SASL username, bypass greylisting for outbound email.
May 29 12:25:28 ns1 iredapd <-- Result: DUNNO
May 29 12:25:28 ns1 iredapd Skip plugin: throttle (protocol_state != RCPT)
May 29 12:25:28 ns1 iredapd --> Apply plugin: sql_alias_access_policy
May 29 12:25:29 ns1 iredapd [SQL] query access policy: #012SELECT accesspolicy#012               FROM alias#012              WHERE address='mlglst@abc.com'#012              LIMIT 1
May 29 12:25:30 ns1 iredapd [SQL] query result: None
May 29 12:25:30 ns1 iredapd [SQL] query target domain of given alias domain (abc.com): #012"SELECT alias_domain.target_domain\n               FROM alias_domain, domain\n              WHERE domain.active=1\n                    AND domain.domain=alias_domain.target_domain\n                    AND alias_domain.alias_domain='abc.com'\n              LIMIT 1"
May 29 12:25:30 ns1 iredapd [SQL] query result: None
May 29 12:25:30 ns1 iredapd Recipient domain is not an alias domain.
May 29 12:25:30 ns1 iredapd <-- Result: DUNNO Recipient is not a mail alias account or no access policy
May 29 12:25:30 ns1 iredapd --> Apply plugin: amavisd_wblist
May 29 12:25:30 ns1 iredapd [SQL] query target domain of given alias domain (abc.com): #012"SELECT alias_domain.target_domain\n               FROM alias_domain, domain\n              WHERE domain.active=1\n                    AND domain.domain=alias_domain.target_domain\n                    AND alias_domain.alias_domain='abc.com'\n              LIMIT 1"
May 29 12:25:30 ns1 iredapd [SQL] query result: None
May 29 12:25:30 ns1 iredapd [SQL] query target domain of given alias domain (abc.com): #012"SELECT alias_domain.target_domain\n               FROM alias_domain, domain\n              WHERE domain.active=1\n                    AND domain.domain=alias_domain.target_domain\n                    AND alias_domain.alias_domain='abc.com'\n              LIMIT 1"
May 29 12:25:30 ns1 iredapd [SQL] query result: None
May 29 12:25:30 ns1 iredapd Possible policy senders: ['admin@abc.com', '@abc.com', '@.', '@.abc.com', '@.com', '192.168.0.115', '192.168.0.*', '192.168.*.115']
May 29 12:25:30 ns1 iredapd Possible policy recipients: ['mlglst@abc.com', '@abc.com', '@.', '@.abc.com', '@.com']
May 29 12:25:30 ns1 iredapd Apply wblist for outbound message.
May 29 12:25:30 ns1 iredapd [SQL] Query local addresses: #012SELECT id, email#012               FROM users#012              WHERE email IN ('admin@abc.com', '@abc.com', '@.', '@.abc.com', '@.com', '192.168.0.115', '192.168.0.*', '192.168.*.115')#012           ORDER BY priority DESC
May 29 12:25:31 ns1 iredapd Local addresses (in `amavisd.users`): [(1, b'@.')]
May 29 12:25:31 ns1 iredapd [SQL] Query external addresses: #012SELECT id, email#012               FROM mailaddr#012              WHERE email IN ('mlglst@abc.com', '@abc.com', '@.', '@.abc.com', '@.com')#012           ORDER BY priority DESC
May 29 12:25:31 ns1 iredapd No record found in SQL database.
May 29 12:25:31 ns1 iredapd [SQL] Query CIDR network: #012SELECT id, email#012               FROM mailaddr#012              WHERE email LIKE '192.%%'#012           ORDER BY priority DESC
May 29 12:25:31 ns1 iredapd IDs of CIDR network(s): []
May 29 12:25:31 ns1 iredapd No valid sender id or recipient id.
May 29 12:25:31 ns1 iredapd Apply wblist for inbound message.
May 29 12:25:31 ns1 iredapd [SQL] Query local addresses: #012SELECT id, email#012               FROM users#012              WHERE email IN ('mlglst@abc.com', '@abc.com', '@.', '@.abc.com', '@.com')#012           ORDER BY priority DESC
May 29 12:25:31 ns1 iredapd Local addresses (in `amavisd.users`): [(1, b'@.')]
May 29 12:25:31 ns1 iredapd [SQL] Query external addresses: #012SELECT id, email#012               FROM mailaddr#012              WHERE email IN ('admin@abc.com', '@abc.com', '@.', '@.abc.com', '@.com', '192.168.0.115', '192.168.0.*', '192.168.*.115')#012           ORDER BY priority DESC
May 29 12:25:31 ns1 iredapd No record found in SQL database.
May 29 12:25:31 ns1 iredapd No valid sender id or recipient id.
May 29 12:25:31 ns1 iredapd <-- Result: DUNNO
May 29 12:25:31 ns1 iredapd Session ended.
May 29 12:25:32 ns1 iredapd [192.168.0.115] RCPT, admin@abc.com => mlglst@abc.com, DUNNO [sasl_username=admin@abc.com, sender=admin@abc.com, client_name=unknown, reverse_client_name=unknown, helo=INIC3ADMIN, encryption_protocol=TLSv1.2, encryption_cipher=ECDHE-RSA-AES256-SHA384, server_port=, process_time=8.7027s]
May 29 12:25:35 ns1 iredapd [policy] request=smtpd_access_policy
May 29 12:25:35 ns1 iredapd [policy] protocol_state=END-OF-MESSAGE
May 29 12:25:35 ns1 iredapd [policy] protocol_name=ESMTP
May 29 12:25:35 ns1 iredapd [policy] client_address=192.168.0.115
May 29 12:25:35 ns1 iredapd [policy] client_name=unknown
May 29 12:25:35 ns1 iredapd [policy] client_port=50104
May 29 12:25:35 ns1 iredapd [policy] reverse_client_name=unknown
May 29 12:25:35 ns1 iredapd [policy] helo_name=INIC3ADMIN
May 29 12:25:35 ns1 iredapd [policy] sender=admin@abc.com
May 29 12:25:35 ns1 iredapd [policy] recipient=mlglst@abc.com
May 29 12:25:35 ns1 iredapd [policy] recipient_count=1
May 29 12:25:35 ns1 iredapd [policy] queue_id=4FsXPg1x0qzHr2J
May 29 12:25:35 ns1 iredapd [policy] instance=10aa.60b1e557.c555c.0
May 29 12:25:35 ns1 iredapd [policy] size=4015
May 29 12:25:35 ns1 iredapd [policy] etrn_domain=
May 29 12:25:35 ns1 iredapd [policy] stress=
May 29 12:25:35 ns1 iredapd [policy] sasl_method=LOGIN
May 29 12:25:35 ns1 iredapd [policy] sasl_username=admin@abc.com
May 29 12:25:35 ns1 iredapd [policy] sasl_sender=
May 29 12:25:35 ns1 iredapd [policy] ccert_subject=
May 29 12:25:35 ns1 iredapd [policy] ccert_issuer=
May 29 12:25:35 ns1 iredapd [policy] ccert_fingerprint=
May 29 12:25:35 ns1 iredapd [policy] ccert_pubkey_fingerprint=
May 29 12:25:35 ns1 iredapd [policy] encryption_protocol=TLSv1.2
May 29 12:25:35 ns1 iredapd [policy] encryption_cipher=ECDHE-RSA-AES256-SHA384
May 29 12:25:35 ns1 iredapd [policy] encryption_keysize=256
May 29 12:25:35 ns1 iredapd [policy] policy_context=
May 29 12:25:35 ns1 iredapd Skip plugin: reject_null_sender (protocol_state != END-OF-MESSAGE)
May 29 12:25:35 ns1 iredapd Skip plugin: wblist_rdns (protocol_state != END-OF-MESSAGE)
May 29 12:25:35 ns1 iredapd Skip plugin: reject_sender_login_mismatch (protocol_state != END-OF-MESSAGE)
May 29 12:25:35 ns1 iredapd Skip plugin: greylisting (protocol_state != END-OF-MESSAGE)
May 29 12:25:35 ns1 iredapd --> Apply plugin: throttle
May 29 12:25:35 ns1 iredapd Bypassed. Sender domain is same as recipient domain.
May 29 12:25:35 ns1 iredapd <-- Result: DUNNO
May 29 12:25:35 ns1 iredapd Skip plugin: sql_alias_access_policy (protocol_state != END-OF-MESSAGE)
May 29 12:25:35 ns1 iredapd Skip plugin: amavisd_wblist (protocol_state != END-OF-MESSAGE)
May 29 12:25:35 ns1 iredapd Session ended.
May 29 12:25:35 ns1 iredapd [192.168.0.115] END-OF-MESSAGE, admin@abc.com => mlglst@abc.com, DUNNO [recipient_count=1, size=4015, process_time=0.0366s]
May 29 12:25:35 ns1 iredapd [SQL] Insert into smtp_sessions: #012        INSERT INTO smtp_sessions (#012            time, time_num,#012            action, reason, instance,#012            client_address, client_name, reverse_client_name, helo_name,#012            encryption_protocol, encryption_cipher,#012            server_address, server_port,#012            sender, sender_domain,#012            sasl_username, sasl_domain,#012            recipient, recipient_domain)#012        VALUES (#012            '2021-05-29 06:55:35', 1622271335,#012            'DUNNO', '', '10aa.60b1e557.c555c.0',#012            '192.168.0.115', 'unknown', 'unknown', 'INIC3ADMIN',#012            'TLSv1.2', 'ECDHE-RSA-AES256-SHA384',#012            '', '',#012            'admin@abc.com', 'abc.com',#012            'admin@abc.com', 'abc.com',#012            'mlglst@abc.com', 'abc.com')


################################

Under this
1) mlglst@abc.com is the mailing list
2) admin@abc.com is the third person email id which is not in member or Moderators list.

Thanks
Sunil

Post's attachments

member.PNG
member.PNG 19.84 kb, file has never been downloaded. 

owner.PNG
owner.PNG 58.42 kb, file has never been downloaded. 

setting.PNG
setting.PNG 28.82 kb, file has never been downloaded. 

You don't have the permssions to download the attachments of this post.

15

Re: Mailing List Issue

Seems you didn't have iRedAPD plugin "sql_ml_access_policy" enabled in /opt/iredapd/settings.py, parameter "plugins =". Could you please double check?

----

Buy me a cup of coffee ($5) to support iRedMail:

buy me a cup of coffee

16

Re: Mailing List Issue

ZhangHuangbin wrote:

Seems you didn't have iRedAPD plugin "sql_ml_access_policy" enabled in /opt/iredapd/settings.py, parameter "plugins =". Could you please double check?

Hi,

I have enable the same but no luck

please check logs after enable sql_ml_access_policy under /opt/iredapd/settings.py

###########################


May 31 13:42:08 ns1 iredapd [policy] request=smtpd_access_policy
May 31 13:42:08 ns1 iredapd [policy] protocol_state=RCPT
May 31 13:42:08 ns1 iredapd [policy] protocol_name=ESMTP
May 31 13:42:08 ns1 iredapd [policy] client_address=192.168.0.115
May 31 13:42:08 ns1 iredapd [policy] client_name=unknown
May 31 13:42:08 ns1 iredapd [policy] client_port=50866
May 31 13:42:08 ns1 iredapd [policy] reverse_client_name=unknown
May 31 13:42:08 ns1 iredapd [policy] helo_name=INIC3ADMIN
May 31 13:42:08 ns1 iredapd [policy] sender=admin@abc.com
May 31 13:42:08 ns1 iredapd [policy] recipient=mlglst@abc.com
May 31 13:42:08 ns1 iredapd [policy] recipient_count=0
May 31 13:42:08 ns1 iredapd [policy] queue_id=
May 31 13:42:08 ns1 iredapd [policy] instance=1dbe.60b49a58.9fa95.0
May 31 13:42:08 ns1 iredapd [policy] size=0
May 31 13:42:08 ns1 iredapd [policy] etrn_domain=
May 31 13:42:08 ns1 iredapd [policy] stress=
May 31 13:42:08 ns1 iredapd [policy] sasl_method=LOGIN
May 31 13:42:08 ns1 iredapd [policy] sasl_username=admin@abc.com
May 31 13:42:08 ns1 iredapd [policy] sasl_sender=
May 31 13:42:08 ns1 iredapd [policy] ccert_subject=
May 31 13:42:08 ns1 iredapd [policy] ccert_issuer=
May 31 13:42:08 ns1 iredapd [policy] ccert_fingerprint=
May 31 13:42:08 ns1 iredapd [policy] ccert_pubkey_fingerprint=
May 31 13:42:08 ns1 iredapd [policy] encryption_protocol=TLSv1.2
May 31 13:42:08 ns1 iredapd [policy] encryption_cipher=ECDHE-RSA-AES256-SHA384
May 31 13:42:08 ns1 iredapd [policy] encryption_keysize=256
May 31 13:42:08 ns1 iredapd [policy] policy_context=
May 31 13:42:08 ns1 iredapd --> Apply plugin: reject_null_sender
May 31 13:42:08 ns1 iredapd <-- Result: DUNNO
May 31 13:42:08 ns1 iredapd --> Apply plugin: wblist_rdns
May 31 13:42:08 ns1 iredapd Found SASL username, bypass rDNS check for outbound.
May 31 13:42:08 ns1 iredapd <-- Result: DUNNO
May 31 13:42:08 ns1 iredapd --> Apply plugin: reject_sender_login_mismatch
May 31 13:42:08 ns1 iredapd Sender: admin@abc.com, SASL username: admin@abc.com
May 31 13:42:08 ns1 iredapd SKIP: sender == sasl username.
May 31 13:42:08 ns1 iredapd <-- Result: DUNNO
May 31 13:42:08 ns1 iredapd --> Apply plugin: greylisting
May 31 13:42:08 ns1 iredapd Found SASL username, bypass greylisting for outbound email.
May 31 13:42:08 ns1 iredapd <-- Result: DUNNO
May 31 13:42:08 ns1 iredapd Skip plugin: throttle (protocol_state != RCPT)
May 31 13:42:08 ns1 iredapd --> Apply plugin: sql_ml_access_policy
May 31 13:42:08 ns1 iredapd [SQL] query access policy: #012SELECT accesspolicy#012               FROM maillists#012              WHERE address='mlglst@abc.com'#012              LIMIT 1
May 31 13:42:08 ns1 iredapd [SQL] query result: ('moderatorsonly',)
May 31 13:42:08 ns1 iredapd Access policy: moderatorsonly
May 31 13:42:08 ns1 iredapd <-- Result: DUNNO (Let mlmmj handle the ACL)
May 31 13:42:08 ns1 iredapd --> Apply plugin: sql_alias_access_policy
May 31 13:42:08 ns1 iredapd [SQL] query access policy: #012SELECT accesspolicy#012               FROM alias#012              WHERE address='mlglst@abc.com'#012              LIMIT 1
May 31 13:42:08 ns1 iredapd [SQL] query result: None
May 31 13:42:08 ns1 iredapd [SQL] query target domain of given alias domain (abc.com): #012"SELECT alias_domain.target_domain\n               FROM alias_domain, domain\n              WHERE domain.active=1\n                    AND domain.domain=alias_domain.target_domain\n                    AND alias_domain.alias_domain='abc.com'\n              LIMIT 1"
May 31 13:42:08 ns1 iredapd [SQL] query result: None
May 31 13:42:08 ns1 iredapd Recipient domain is not an alias domain.
May 31 13:42:08 ns1 iredapd <-- Result: DUNNO Recipient is not a mail alias account or no access policy
May 31 13:42:08 ns1 iredapd --> Apply plugin: amavisd_wblist
May 31 13:42:08 ns1 iredapd [SQL] query target domain of given alias domain (abc.com): #012"SELECT alias_domain.target_domain\n               FROM alias_domain, domain\n              WHERE domain.active=1\n                    AND domain.domain=alias_domain.target_domain\n                    AND alias_domain.alias_domain='abc.com'\n              LIMIT 1"
May 31 13:42:08 ns1 iredapd [SQL] query result: None
May 31 13:42:08 ns1 iredapd [SQL] query target domain of given alias domain (abc.com): #012"SELECT alias_domain.target_domain\n               FROM alias_domain, domain\n              WHERE domain.active=1\n                    AND domain.domain=alias_domain.target_domain\n                    AND alias_domain.alias_domain='abc.com'\n              LIMIT 1"
May 31 13:42:08 ns1 iredapd [SQL] query result: None
May 31 13:42:08 ns1 iredapd Possible policy senders: ['admin@abc.com', '@abc.com', '@.', '@.abc.com', '@.com', '192.168.0.115', '192.168.0.*', '192.168.*.115']
May 31 13:42:08 ns1 iredapd Possible policy recipients: ['mlglst@abc.com', '@abc.com', '@.', '@.abc.com', '@.com']
May 31 13:42:08 ns1 iredapd Apply wblist for outbound message.
May 31 13:42:08 ns1 iredapd [SQL] Query local addresses: #012SELECT id, email#012               FROM users#012              WHERE email IN ('admin@abc.com', '@abc.com', '@.', '@.abc.com', '@.com', '192.168.0.115', '192.168.0.*', '192.168.*.115')#012           ORDER BY priority DESC
May 31 13:42:08 ns1 iredapd Local addresses (in `amavisd.users`): [(1, b'@.')]
May 31 13:42:08 ns1 iredapd [SQL] Query external addresses: #012SELECT id, email#012               FROM mailaddr#012              WHERE email IN ('mlglst@abc.com', '@abc.com', '@.', '@.abc.com', '@.com')#012           ORDER BY priority DESC
May 31 13:42:08 ns1 iredapd No record found in SQL database.
May 31 13:42:08 ns1 iredapd [SQL] Query CIDR network: #012SELECT id, email#012               FROM mailaddr#012              WHERE email LIKE '192.%%'#012           ORDER BY priority DESC
May 31 13:42:08 ns1 iredapd IDs of CIDR network(s): []
May 31 13:42:08 ns1 iredapd No valid sender id or recipient id.
May 31 13:42:08 ns1 iredapd Apply wblist for inbound message.
May 31 13:42:08 ns1 iredapd [SQL] Query local addresses: #012SELECT id, email#012               FROM users#012              WHERE email IN ('mlglst@abc.com', '@abc.com', '@.', '@.abc.com', '@.com')#012           ORDER BY priority DESC
May 31 13:42:08 ns1 iredapd Local addresses (in `amavisd.users`): [(1, b'@.')]
May 31 13:42:08 ns1 iredapd [SQL] Query external addresses: #012SELECT id, email#012               FROM mailaddr#012              WHERE email IN ('admin@abc.com', '@abc.com', '@.', '@.abc.com', '@.com', '192.168.0.115', '192.168.0.*', '192.168.*.115')#012           ORDER BY priority DESC
May 31 13:42:08 ns1 iredapd No record found in SQL database.
May 31 13:42:08 ns1 iredapd No valid sender id or recipient id.
May 31 13:42:08 ns1 iredapd <-- Result: DUNNO
May 31 13:42:08 ns1 iredapd Session ended.
May 31 13:42:08 ns1 iredapd [192.168.0.115] RCPT, admin@abc.com => mlglst@abc.com, DUNNO [sasl_username=admin@abc.com, sender=admin@abc.com, client_name=unknown, reverse_client_name=unknown, helo=INIC3ADMIN, encryption_protocol=TLSv1.2, encryption_cipher=ECDHE-RSA-AES256-SHA384, server_port=, process_time=0.0917s]
May 31 13:42:08 ns1 iredapd [policy] request=smtpd_access_policy
May 31 13:42:08 ns1 iredapd [policy] protocol_state=END-OF-MESSAGE
May 31 13:42:08 ns1 iredapd [policy] protocol_name=ESMTP
May 31 13:42:08 ns1 iredapd [policy] client_address=192.168.0.115
May 31 13:42:08 ns1 iredapd [policy] client_name=unknown
May 31 13:42:08 ns1 iredapd [policy] client_port=50866
May 31 13:42:08 ns1 iredapd [policy] reverse_client_name=unknown
May 31 13:42:08 ns1 iredapd [policy] helo_name=INIC3ADMIN
May 31 13:42:08 ns1 iredapd [policy] sender=admin@abc.com
May 31 13:42:08 ns1 iredapd [policy] recipient=mlglst@abc.com
May 31 13:42:08 ns1 iredapd [policy] recipient_count=1
May 31 13:42:08 ns1 iredapd [policy] queue_id=4Ftp145ZqZzHqy5
May 31 13:42:08 ns1 iredapd [policy] instance=1dbe.60b49a58.9fa95.0
May 31 13:42:08 ns1 iredapd [policy] size=2817
May 31 13:42:08 ns1 iredapd [policy] etrn_domain=
May 31 13:42:08 ns1 iredapd [policy] stress=
May 31 13:42:08 ns1 iredapd [policy] sasl_method=LOGIN
May 31 13:42:08 ns1 iredapd [policy] sasl_username=admin@abc.com
May 31 13:42:08 ns1 iredapd [policy] sasl_sender=
May 31 13:42:08 ns1 iredapd [policy] ccert_subject=
May 31 13:42:08 ns1 iredapd [policy] ccert_issuer=
May 31 13:42:08 ns1 iredapd [policy] ccert_fingerprint=
May 31 13:42:08 ns1 iredapd [policy] ccert_pubkey_fingerprint=
May 31 13:42:08 ns1 iredapd [policy] encryption_protocol=TLSv1.2
May 31 13:42:08 ns1 iredapd [policy] encryption_cipher=ECDHE-RSA-AES256-SHA384
May 31 13:42:08 ns1 iredapd [policy] encryption_keysize=256
May 31 13:42:08 ns1 iredapd [policy] policy_context=
May 31 13:42:08 ns1 iredapd Skip plugin: reject_null_sender (protocol_state != END-OF-MESSAGE)
May 31 13:42:08 ns1 iredapd Skip plugin: wblist_rdns (protocol_state != END-OF-MESSAGE)
May 31 13:42:08 ns1 iredapd Skip plugin: reject_sender_login_mismatch (protocol_state != END-OF-MESSAGE)
May 31 13:42:08 ns1 iredapd Skip plugin: greylisting (protocol_state != END-OF-MESSAGE)
May 31 13:42:08 ns1 iredapd --> Apply plugin: throttle
May 31 13:42:08 ns1 iredapd Bypassed. Sender domain is same as recipient domain.
May 31 13:42:08 ns1 iredapd <-- Result: DUNNO
May 31 13:42:08 ns1 iredapd Skip plugin: sql_ml_access_policy (protocol_state != END-OF-MESSAGE)
May 31 13:42:08 ns1 iredapd Skip plugin: sql_alias_access_policy (protocol_state != END-OF-MESSAGE)
May 31 13:42:08 ns1 iredapd Skip plugin: amavisd_wblist (protocol_state != END-OF-MESSAGE)
May 31 13:42:08 ns1 iredapd Session ended.
May 31 13:42:08 ns1 iredapd [192.168.0.115] END-OF-MESSAGE, admin@abc.com => mlglst@abc.com, DUNNO [recipient_count=1, size=2817, process_time=0.0042s]
May 31 13:42:08 ns1 iredapd [SQL] Insert into smtp_sessions: #012        INSERT INTO smtp_sessions (#012            time, time_num,#012            action, reason, instance,#012            client_address, client_name, reverse_client_name, helo_name,#012            encryption_protocol, encryption_cipher,#012            server_address, server_port,#012            sender, sender_domain,#012            sasl_username, sasl_domain,#012            recipient, recipient_domain)#012        VALUES (#012            '2021-05-31 08:12:08', 1622448728,#012            'DUNNO', '', '1dbe.60b49a58.9fa95.0',#012            '192.168.0.115', 'unknown', 'unknown', 'INIC3ADMIN',#012            'TLSv1.2', 'ECDHE-RSA-AES256-SHA384',#012            '', '',#012            'admin@abc.com', 'abc.com',#012            'admin@abc.com', 'abc.com',#012            'mlglst@abc.com', 'abc.com')

###########################

Thanks
Sunil

17

Re: Mailing List Issue

RajeshM wrote:

May 31 13:42:08 ns1 iredapd --> Apply plugin: sql_ml_access_policy
May 31 13:42:08 ns1 iredapd [SQL] query access policy: #012SELECT accesspolicy#012               FROM maillists#012              WHERE address='mlglst@abc.com'#012              LIMIT 1
May 31 13:42:08 ns1 iredapd [SQL] query result: ('moderatorsonly',)
May 31 13:42:08 ns1 iredapd Access policy: moderatorsonly
May 31 13:42:08 ns1 iredapd <-- Result: DUNNO (Let mlmmj handle the ACL)

It hands over to mlmmj for the ACL.
Now the problem is, do you have correct moderators in file /var/vmail/mlmmj/<domain>/<list-name>/control/moderators?

----

Buy me a cup of coffee ($5) to support iRedMail:

buy me a cup of coffee

18

Re: Mailing List Issue

ZhangHuangbin wrote:
RajeshM wrote:

May 31 13:42:08 ns1 iredapd --> Apply plugin: sql_ml_access_policy
May 31 13:42:08 ns1 iredapd [SQL] query access policy: #012SELECT accesspolicy#012               FROM maillists#012              WHERE address='mlglst@abc.com'#012              LIMIT 1
May 31 13:42:08 ns1 iredapd [SQL] query result: ('moderatorsonly',)
May 31 13:42:08 ns1 iredapd Access policy: moderatorsonly
May 31 13:42:08 ns1 iredapd <-- Result: DUNNO (Let mlmmj handle the ACL)

It hands over to mlmmj for the ACL.
Now the problem is, do you have correct moderators in file /var/vmail/mlmmj/<domain>/<list-name>/control/moderators?

Hi,

yes. Only one email id is there which is shown as an moderator in iredadmin panel under same mailing list.

Thanks
Sunil

19

Re: Mailing List Issue

RajeshM wrote:
ZhangHuangbin wrote:
RajeshM wrote:

May 31 13:42:08 ns1 iredapd --> Apply plugin: sql_ml_access_policy
May 31 13:42:08 ns1 iredapd [SQL] query access policy: #012SELECT accesspolicy#012               FROM maillists#012              WHERE address='mlglst@abc.com'#012              LIMIT 1
May 31 13:42:08 ns1 iredapd [SQL] query result: ('moderatorsonly',)
May 31 13:42:08 ns1 iredapd Access policy: moderatorsonly
May 31 13:42:08 ns1 iredapd <-- Result: DUNNO (Let mlmmj handle the ACL)

It hands over to mlmmj for the ACL.
Now the problem is, do you have correct moderators in file /var/vmail/mlmmj/<domain>/<list-name>/control/moderators?

Hi,

yes. Only one email id is there which is shown as an moderator in iredadmin panel under same mailing list.

Thanks
Sunil


HI,

Any update on above issue.

Thanks
Sunil

20

Re: Mailing List Issue

ok, i found the root cause: Debian 9 ships mlmmj-1.2.19, but "modonlypost" is only available in mlmmj-1.3.0.
Better upgrade your Debian from 9 to 10 now. smile

----

Buy me a cup of coffee ($5) to support iRedMail:

buy me a cup of coffee