[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: monit 5.4 violating smtp protocol
From: |
Len Conrad |
Subject: |
Re: monit 5.4 violating smtp protocol |
Date: |
Thu, 23 Aug 2012 17:01:43 +0200 |
---------- Original Message ----------------------------------
From: Igor Homyakov <address@hidden>
Date: Thu, 23 Aug 2012 17:30:06 +0400
>Hi Len
>
>Accordingto postscreen documentation :
>
>postscreen(8) should not be used on SMTP ports that receive mail from
>end-user clients (MUAs)
>
>monit is not a SMTP server or MTA in any cases. It is MUA exactly.
>
>>From my point of view you should reconfigure your monit daemons to use
>submission SMTP port (with auth) for alert delivery.
>
>Kind regards
>Igor Homyakov
>
>
>On Thu, Aug 23, 2012 at 5:18 PM, Len Conrad <address@hidden> wrote:
>>
>>
>> ---------- Original Message ----------------------------------
>> From: "Len Conrad " <address@hidden>
>> Reply-To: <address@hidden>
>> Date: Wed, 22 Aug 2012 16:34:22 +0200
>>
>>
>> I have several monit 5.4 with their mailserver set to mx1.domain.com
>>
>> mx1 runs postfix's postscreen and is dropping the monit smtp clients with
>>
>> "PREGREET 20 after 0"
>>
>> that's "after 0 seconds", meaning monit smtp client is connecting to port 23
>> and immediately starts sending, when it should wait for mx1's SMTP greeting.
>>
>> That's why the log line is a PREGREET violation.
>>
>> The "20" means mx1 received 20 characters before mx1 could send its SMTP
>> greeting.
>>
>> As a result, we aren't getting monit alerts and will have to whitelist all
>> the monit IPs so the pregreet filter doesn't drop them.
>>
>> Len
==================
Legalistically, you're correct, but that's not an excuse for Monit violating
SMTP protocol.
Len