Bug#834689: exim4-config: Add more special ips to ingore_target_hosts

Marc Haber mh+debian-packages at zugschlus.de
Thu Aug 18 05:43:16 UTC 2016 

Hi Dean,

thanks for paying attention to these details. We would like to stay as
close to the Upstream default configuration as possible, so I'd like
to ask you to report this as an upstream issue in the exim bugzilla.

Greetings
Marc

On Thu, Aug 18, 2016 at 12:28:34PM +1000, Dean Hamstead wrote:
> From: Dean Hamstead <dean at fragfest.com.au>
> Subject: Bug#834689: exim4-config: Add more special ips to
>  ingore_target_hosts
> To: Debian Bug Tracking System <submit at bugs.debian.org>
> Reply-To: Dean Hamstead <dean at fragfest.com.au>, 834689 at bugs.debian.org
> Date: Thu, 18 Aug 2016 12:28:34 +1000
> X-Debian-PR-Package: exim4-config
> X-Mailer: reportbug 6.6.3
> List-Id: Reach the exim4 maintainers
>  <pkg-exim4-maintainers.lists.alioth.debian.org>
> X-Spam-Score: (-------) -7.3
> X-Spam-Report: torres.zugschlus.de  Content analysis details:   (-7.3
>  points, 5.0 required)   pts  rule name              description  ----
>  ---------------------- ------------------------------------------- -5.0
>  RCVD_IN_DNSWL_HI       RBL: Sender listed at http://www.dnswl.org/, high
>                              trust
>                              [2001:41c8:1000:21:0:0:21:21 listed in]
>                              [list.dnswl.org] -0.5 RP_MATCHES_RCVD
>         Envelope sender domain matches handover relay domain  0.0
>  HEADER_FROM_DIFFERENT_DOMAINS From and EnvelopeFrom 2nd level mail
>                              domains are different -1.9 BAYES_00
>                BODY: Bayes spam probability is 0 to 1%
>                              [score: 0.0000]  0.1 DKIM_SIGNED
>             Message has a DKIM or DK signature, not necessarily valid  0.0
>  T_DKIM_INVALID         DKIM-Signature header exists but is not valid
> 
> Package: exim4-config
> Version: 4.84.2-2+deb8u1
> Severity: wishlist
> 
> Dear Maintainer,
> 
> In /etc/exim4/conf.d/router/200_exim4-config_primary, it would be terrific to expand out the special use ip addresses in the ignore_target_hosts directive
> 
> >From https://github.com/Exim/exim/wiki/Q0319:
> 
> ignore_target_hosts = \
>             # Hosts on "this network"; RFC 1700 (page 4) states that these
>             # are only allowed as source addresses
>             0.0.0.0/8 : \
>             # Private networks, RFC 1918
>             10.0.0.0/8 : 172.16.0.0/12 : 192.168.0.0/16 : \
>             # Internet host loopback address, RFC 1700 (page 5)
>             127.0.0.0/8 : \
>             # "Link local" block
>             169.254.0.0/16 : \
>             # "TEST-NET" - should not appear on the public Internet
>             192.0.2.0/24 : \
>             # 6to4 relay anycast addresses, RFC 3068
>             192.88.99.0/24 : \
>             # Network interconnect device benchmark testing, RFC 2544
>             198.18.0.0/15 : \
>             # Multicast addresses, RFC 3171
>             224.0.0.0/4 : \
>             # Reserved for future use, RFC 1700 (page 4)
>             240.0.0.0/4
> 
> 
> 
> This is missing
> 
> TEST-NET-2: 198.51.100.0 - 198.51.100.255 | 198.51.100.0/24
> TEST-NET-3: 203.0.113.0 - 203.0.113.255 | 203.0.113.0/24
> CGNAT: 100.64.0.0 - 100.127.255.255 | 100.64.0.0/10
> 
> Probably also
> 
> Unique local addresses: fd00::/8
> 
> 
> 
> -- Package-specific info:
> Exim version 4.84_2 #1 built 25-Jul-2016 18:59:39
> Copyright (c) University of Cambridge, 1995 - 2014
> (c) The Exim Maintainers and contributors in ACKNOWLEDGMENTS file, 2007 - 2014
> Berkeley DB: Berkeley DB 5.3.28: (September  9, 2013)
> Support for: crypteq iconv() IPv6 PAM Perl Expand_dlfunc GnuTLS move_frozen_messages Content_Scanning DKIM Old_Demime PRDR OCSP
> Lookups (built-in): lsearch wildlsearch nwildlsearch iplsearch cdb dbm dbmjz dbmnz dnsdb dsearch ldap ldapdn ldapm mysql nis nis0 passwd pgsql sqlite
> Authenticators: cram_md5 cyrus_sasl dovecot plaintext spa
> Routers: accept dnslookup ipliteral iplookup manualroute queryprogram redirect
> Transports: appendfile/maildir/mailstore/mbx autoreply lmtp pipe smtp
> Fixed never_users: 0
> Size of off_t: 8
> Configuration file is /var/lib/exim4/config.autogenerated
> 
> -- System Information:
> Debian Release: 8.5
>   APT prefers stable-updates
>   APT policy: (500, 'stable-updates'), (500, 'stable')
> Architecture: amd64 (x86_64)
> 
> Kernel: Linux 2.6.32-042stab116.1 (SMP w/2 CPU cores)
> Locale: LANG=en_AU.UTF-8, LC_CTYPE=en_AU.UTF-8 (charmap=UTF-8)
> Shell: /bin/sh linked to /bin/dash
> Init: sysvinit (via /sbin/init)
> 
> Versions of packages exim4-config depends on:
> ii  adduser                3.113+nmu3
> ii  debconf [debconf-2.0]  1.5.56
> 
> exim4-config recommends no packages.
> 
> exim4-config suggests no packages.
> 
> -- Configuration Files:
> /etc/exim4/conf.d/acl/00_exim4-config_header changed [not included]
> /etc/exim4/conf.d/acl/30_exim4-config_check_mail changed [not included]
> /etc/exim4/conf.d/acl/30_exim4-config_check_rcpt changed [not included]
> /etc/exim4/conf.d/acl/40_exim4-config_check_data changed [not included]
> /etc/exim4/conf.d/auth/30_exim4-config_examples changed [not included]
> /etc/exim4/conf.d/main/01_exim4-config_listmacrosdefs changed [not included]
> /etc/exim4/conf.d/main/02_exim4-config_options changed [not included]
> /etc/exim4/conf.d/rewrite/31_exim4-config_rewriting changed [not included]
> /etc/exim4/conf.d/router/200_exim4-config_primary changed [not included]
> /etc/exim4/conf.d/router/300_exim4-config_real_local changed [not included]
> /etc/exim4/conf.d/router/400_exim4-config_system_aliases changed [not included]
> /etc/exim4/conf.d/router/600_exim4-config_userforward changed [not included]
> /etc/exim4/conf.d/router/700_exim4-config_procmail changed [not included]
> /etc/exim4/conf.d/router/800_exim4-config_maildrop changed [not included]
> /etc/exim4/conf.d/router/850_exim4-config_lowuid changed [not included]
> /etc/exim4/conf.d/router/900_exim4-config_local_user changed [not included]
> /etc/exim4/conf.d/transport/30_exim4-config_address_file changed [not included]
> /etc/exim4/conf.d/transport/30_exim4-config_address_pipe changed [not included]
> /etc/exim4/conf.d/transport/30_exim4-config_mail_spool changed [not included]
> /etc/exim4/conf.d/transport/30_exim4-config_maildir_home changed [not included]
> /etc/exim4/conf.d/transport/30_exim4-config_maildrop_pipe changed [not included]
> /etc/exim4/conf.d/transport/30_exim4-config_procmail_pipe changed [not included]
> /etc/exim4/conf.d/transport/30_exim4-config_remote_smtp changed [not included]
> /etc/exim4/conf.d/transport/30_exim4-config_remote_smtp_smarthost changed [not included]
> /etc/exim4/conf.d/transport/35_exim4-config_address_directory changed [not included]
> /etc/exim4/exim4.conf.template changed [not included]
> 
> -- debconf information excluded
> 
> -- 
> Pkg-exim4-maintainers mailing list
> Pkg-exim4-maintainers at lists.alioth.debian.org
> http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-exim4-maintainers

-- 
-----------------------------------------------------------------------------
Marc Haber         | "I don't trust Computers. They | Mailadresse im Header
Leimen, Germany    |  lose things."    Winona Ryder | Fon: *49 6224 1600402
Nordisch by Nature |  How to make an American Quilt | Fax: *49 6224 1600421

More information about the Pkg-exim4-maintainers mailing list