Hello board,
after I injected an E-Mail with a malformed header line into the scalix server:
cat mailtext | sendmail -t
the Outlook Rule Plugin crashed and I removed the applicable rule with sxaa.
I can reenable the Plugin, but every time a new mail comes in that matches the (deleted) rule, it crashes again. The mail itself vanishes, but other mail is processed properly.
I found nothing unusual in the logs (afaik). "omscan -Axva" is fine and "omqdump -s -p" says:
QUEUE Messages Active Ever Load [1min,5min,15min]
ARCHERR 0 0 0 0,00 0,00 0,00
ARCHIVE 0 0 0 0,00 0,00 0,00
BB 0 0 0 0,00 0,00 0,00
DIRSYNC 0 0 0 0,00 0,00 0,00
DMM 0 0 0 0,00 0,00 0,00
DUMP 0 0 0 0,00 0,00 0,00
ERRMGR 0 0 0 0,00 0,00 0,00
ERROR 0 0 0 0,00 0,00 0,00
LICENSE 0 0 0 0,00 0,00 0,00
LOCAL 0 0 20 0,00 0,00 0,00
PRINT 0 0 0 0,00 0,00 0,00
REQ 0 0 0 0,00 0,00 0,00
RESOLVE 0 0 0 0,00 0,00 0,00
ROUTER 0 0 24 0,00 0,00 0,00
SMERR 0 0 0 0,00 0,00 0,00
SMINTFC 0 0 0 0,00 0,00 0,00
TEST 0 0 0 0,00 0,00 0,00
UNIX 0 0 4 0,00 0,00 0,00
IDEL 0 0 29 0,00 0,00 0,00
POISON 0 0 0 0,00 0,00 0,00
Is there anything I can do about it? Thanks a lot for any tips!
Your's Jan
Rules broke after injecting a malformed e-mail
Moderators: ScalixSupport, admin
-
ScalixSupport
- Scalix
- Posts: 5503
- Joined: Thu Mar 25, 2004 8:15 pm
Hey Jan,
Do you access the rules wizard through SWA or Outlook, if you use Outlook, the rules
wizard that you should use be the one provided by Scalix and not the one from Outlook.
What was the rule that you created using sxaa, and how did you manage to change the
message header, can you justify this to be a normal scenario.
Thanks,
Subir
Do you access the rules wizard through SWA or Outlook, if you use Outlook, the rules
wizard that you should use be the one provided by Scalix and not the one from Outlook.
What was the rule that you created using sxaa, and how did you manage to change the
message header, can you justify this to be a normal scenario.
Thanks,
Subir
-
Jan Reusig
Hello Subir,
first, thank you for your reply! I used Outlook to create a rule like
"if sender contains 'abc@def.de', move msg to folder x".
It worked so far, but then I sent a messge to the system with the first header line containing just: "my@mail.com" (this was caused by an improper procmail-command). But the mail was otherwise matching the mentioned rule. This caused the OL-rules plugin to be deactivated at the next start of OL.
I removed all rules (with sxaa, and with later tries also with OL).
Now, all mail is processed ok, but when I send a new one which matches the former (and now deleted) rule, it causes the plugin to be deactivated again. The message itself is lost.
So I imagine, that there is a kind of relict of the former rule that couldn't be deleted?
I hope, I could make things a little bit clearer
first, thank you for your reply! I used Outlook to create a rule like
"if sender contains 'abc@def.de', move msg to folder x".
It worked so far, but then I sent a messge to the system with the first header line containing just: "my@mail.com" (this was caused by an improper procmail-command). But the mail was otherwise matching the mentioned rule. This caused the OL-rules plugin to be deactivated at the next start of OL.
I removed all rules (with sxaa, and with later tries also with OL).
Now, all mail is processed ok, but when I send a new one which matches the former (and now deleted) rule, it causes the plugin to be deactivated again. The message itself is lost.
So I imagine, that there is a kind of relict of the former rule that couldn't be deleted?
I hope, I could make things a little bit clearer
-
ScalixSupport
- Scalix
- Posts: 5503
- Joined: Thu Mar 25, 2004 8:15 pm
Hi!
Are you sure you used the Scalix rules wizard?
If you run the command:
for ex.
should give a list of all rules that have been created for this user. In order to delete the
rule with reference number 600 as above, you should run the command:
Thanks,
Subir
Are you sure you used the Scalix rules wizard?
If you run the command:
Code: Select all
sxaa --user <username>for ex.
[root@subir-rhel4 admin_resource_kit]# ./sxaa --user user01
OOF FLT OLK AANO ACTION TITLE STATE
--- --- --- ---- ---------- ------------------------------ --------
Y 450 REDIRECT Scalix redirected message enabled
Y 600 FILE test move enabled
[root@subir-rhel4 admin_resource_kit]#
should give a list of all rules that have been created for this user. In order to delete the
rule with reference number 600 as above, you should run the command:
Code: Select all
./sxaa --user user01 --remove 600Thanks,
Subir
-
Jan Reusig
Ok, now sxaa shows:
[root@www ~]# sxaa --user fwoeck
OOF FLT OLK AANO ACTION TITLE STATE
--- --- --- ---- ---------- ------------------------------ --------
[root@www ~]#
Afterwards ich checked Outlook, and the rules were still there (two separate sets??). Ok, I deleted them too.
This time i tried something different and I'm a little confused: I didn't use Outlook, but Thunderbird to access the mail account via IMAP. When I send the following mail to another account and drag-and-drop the mail into the base imap directory of my original account it is silently deleted. Any other mail is fine. Thunderbird doesn't complain about this mail - is there anything wrong with it?
Return-Path: <isdn@example.com>
Delivered-To: fwoeck@example.com
Received: (qmail 28719 invoked by uid 89); 26 Feb 2007 04:33:29 -0000
Comment: DomainKeys? See http://antispam.yahoo.com/domainkeys
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws;
s=private; d=example.com;
b=P9/btgzwhL/efQmp0bm28CAb3zw7trJHvwxxse3RjA5jQnjonj2FSoY80heCsqx0;
Received: by simscan 1.3.1 ppid: 28710, pid: 28714, t: 0.9340s
scanners: attach: 1.3.1 clamav: 0.90/m:42
Received: from unknown (HELO isdn) (isdn@example.com@192.168.0.190)
by dmz.example.com with ESMTPA; 26 Feb 2007 04:33:28 -0000
X-KENId: 0000453AKEN01CCE9E2
X-KENRelayed: 0000453AKEN01CCE9E2@isdn
Received: from [127.0.0.1]
by KEN (4.00.83-v061023) with SMTP
; Mon, 26 Feb 2007 05:33:42 +0100
Date: Mon, 26 Feb 2007 05:33:29 +0100
From: "FRITZ! KEN!" <isdn@example.com>
Subject: mynewnumber
To: fwoeck@example.com
Message-Id: <1172475938@ken>
Mime-Version: 1.0
Content-Type: multipart/mixed;
Boundary="0__=_0D7A3N1K4E011724759380F2E3L9I2X0_=__0"
X-KENRecTime: 1172464422
X-KENLimit: ignore
X-Mailer: KEN! 4.00.83 BD 061023
--0__=_0D7A3N1K4E011724759380F2E3L9I2X0_=__0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: quoted-printable
Neuer Anruf von 01234567890
Empfangen am 26.02.2007 um 05:33 f=FCr MSN 1234567.
L=E4nge der Nachricht: 00:13
Die Nachricht ist dieser E-Mail im Format *.3gp angeh=E4ngt.
--0__=_0D7A3N1K4E011724759380F2E3L9I2X0_=__0
Content-Type: video/3gpp;
name="Fon 2007-02-26 05.33.29.3gp"
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="Fon 2007-02-26 05.33.29.3gp"
AAAAIGZ0eXAzZ3A2AAAAADNncDZpc29tM2cyYW1wNDIAAARGbW9vdgAAAGxt
dmhkAAAAAMIJ/jXCCf41AAACWAAAHDMAAQAAAQAAAAAAAAAAAAAAAAEAAAAA
AAAAAAAAAAAAAAABAAAAAAAAAAAAAAAAAABAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAgAAABhpb2RzAAAAABCAgIAHAE///yz//wAAA7p0cmFr
--snip--
ff+OH5LMYAOd4M5asJE00kKOW6UMubTi02VmhVQFaGnbAVEwA0aWx+74A2AM
BwEYMBIOYVAqgzHJewRonZbSn/MggF8A0Dep3nmxHSNGy2Fjy53QQ4yqfchV
Z1W115ry+oXUyJSATaYqoMvN2+hUxIAAml2oqdIA6QBsQkmB/aYAa9G1JP9s
AA4L+AIA4A==
--0__=_0D7A3N1K4E011724759380F2E3L9I2X0_=__0--
Your's Jan
[root@www ~]# sxaa --user fwoeck
OOF FLT OLK AANO ACTION TITLE STATE
--- --- --- ---- ---------- ------------------------------ --------
[root@www ~]#
Afterwards ich checked Outlook, and the rules were still there (two separate sets??). Ok, I deleted them too.
This time i tried something different and I'm a little confused: I didn't use Outlook, but Thunderbird to access the mail account via IMAP. When I send the following mail to another account and drag-and-drop the mail into the base imap directory of my original account it is silently deleted. Any other mail is fine. Thunderbird doesn't complain about this mail - is there anything wrong with it?
Return-Path: <isdn@example.com>
Delivered-To: fwoeck@example.com
Received: (qmail 28719 invoked by uid 89); 26 Feb 2007 04:33:29 -0000
Comment: DomainKeys? See http://antispam.yahoo.com/domainkeys
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws;
s=private; d=example.com;
b=P9/btgzwhL/efQmp0bm28CAb3zw7trJHvwxxse3RjA5jQnjonj2FSoY80heCsqx0;
Received: by simscan 1.3.1 ppid: 28710, pid: 28714, t: 0.9340s
scanners: attach: 1.3.1 clamav: 0.90/m:42
Received: from unknown (HELO isdn) (isdn@example.com@192.168.0.190)
by dmz.example.com with ESMTPA; 26 Feb 2007 04:33:28 -0000
X-KENId: 0000453AKEN01CCE9E2
X-KENRelayed: 0000453AKEN01CCE9E2@isdn
Received: from [127.0.0.1]
by KEN (4.00.83-v061023) with SMTP
; Mon, 26 Feb 2007 05:33:42 +0100
Date: Mon, 26 Feb 2007 05:33:29 +0100
From: "FRITZ! KEN!" <isdn@example.com>
Subject: mynewnumber
To: fwoeck@example.com
Message-Id: <1172475938@ken>
Mime-Version: 1.0
Content-Type: multipart/mixed;
Boundary="0__=_0D7A3N1K4E011724759380F2E3L9I2X0_=__0"
X-KENRecTime: 1172464422
X-KENLimit: ignore
X-Mailer: KEN! 4.00.83 BD 061023
--0__=_0D7A3N1K4E011724759380F2E3L9I2X0_=__0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: quoted-printable
Neuer Anruf von 01234567890
Empfangen am 26.02.2007 um 05:33 f=FCr MSN 1234567.
L=E4nge der Nachricht: 00:13
Die Nachricht ist dieser E-Mail im Format *.3gp angeh=E4ngt.
--0__=_0D7A3N1K4E011724759380F2E3L9I2X0_=__0
Content-Type: video/3gpp;
name="Fon 2007-02-26 05.33.29.3gp"
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="Fon 2007-02-26 05.33.29.3gp"
AAAAIGZ0eXAzZ3A2AAAAADNncDZpc29tM2cyYW1wNDIAAARGbW9vdgAAAGxt
dmhkAAAAAMIJ/jXCCf41AAACWAAAHDMAAQAAAQAAAAAAAAAAAAAAAAEAAAAA
AAAAAAAAAAAAAAABAAAAAAAAAAAAAAAAAABAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAgAAABhpb2RzAAAAABCAgIAHAE///yz//wAAA7p0cmFr
--snip--
ff+OH5LMYAOd4M5asJE00kKOW6UMubTi02VmhVQFaGnbAVEwA0aWx+74A2AM
BwEYMBIOYVAqgzHJewRonZbSn/MggF8A0Dep3nmxHSNGy2Fjy53QQ4yqfchV
Z1W115ry+oXUyJSATaYqoMvN2+hUxIAAml2oqdIA6QBsQkmB/aYAa9G1JP9s
AA4L+AIA4A==
--0__=_0D7A3N1K4E011724759380F2E3L9I2X0_=__0--
Your's Jan
Who is online
Users browsing this forum: No registered users and 12 guests