PC Magazine's Editors Choice & Top Pick for the SMB
How it worksFree TrialVIP RewardsCompare all vq Products
Company | Products | Features | Partners | Support | The Lab | Contact Us | Home
 Vanquish Forum Index  FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 
Search:    Advanced

vqSA appears to be open relay to in-house blacklist test

 
Post new topic   Reply to topic    Vanquish Forum Index -> vqSA/vqNow Admin Community
View previous topic :: View next topic  
Author Message
--VQ--
Site Admin


Joined: 06 Jan 2003
Posts: 590
PostPosted: Wed Sep 20, 2006 11:31 am    Post subject: vqSA appears to be open relay to in-house blacklist test Reply with quote
Question (from Ray Vanpraag at webhost Candylogic)

I started to get this error. Our mail server is rejecting mail forwarded to us by the vq appliance because it believes that something isn't configured correctly.
Quote:
This is the qmail-send program at vq.xyzlogic.com.
I wasn't able to deliver your message to the following addresses. This is a permanent error; I've given up.

69.xx.xx.xx does not like recipient.
Remote host said: 554 Service unavailable; Client host [vq.xyzlogic.com] blocked using list.dsbl.org; The server you're sending mail to is misconfigured: it uses IP-based blocklist(s) as NAME-based ones
Giving up on 69.xx.xx.xx.

Answer
The error message cites the block-list DSBL.ORG and states that your vqSA is "using IP-based blocklist(s) as NAME-based ones." This is an incorrect reject message. Your vqSA does not use any block lists. So we set about finding out why your server was blocked. The answer is quite remarkable - and it requires quick action...

The black list that you susbcribe to, DSBL.ORG, runs a distributed applet on your own server to help find and report open relays. That applet tests the servers that send mail into your network.

You have not excluded your vq.candylogic server from the test! That server is used as an internal trusted-only relay, but the DSBL agent does not realize that it is a local resource on your own network, and that outsiders cannot use it as an open relay.

This result can be catastrophic (and ironic), because your own server is feeding the worldwide blacklist DSBL.ORG. That is, you are informing them that you have discovered a spammer -- and the bad guy is you!

Recommendation
Currently, you are reporting your own server to "the authorities"! Either exclude your vqSA from the open-relay test, or teach the test to pass over the vqSA header, or alternatively stop using the in-house open-relay test.
Back to top
View user's profile Send private message Visit poster's website
Display posts from previous:   
Post new topic   Reply to topic    Vanquish Forum Index -> vqSA/vqNow Admin Community All times are GMT - 4 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB © 2001, 2003 phpBB Group

search site | site map | privacy | credits | © 2005 Vanquish Inc