You are only allowed to send from your own account

Use this forum if you have installed hMailServer and want to ask a question related to a production release of hMailServer. Before posting, please read the troubleshooting guide. A large part of all reported issues are already described in detail here.
Post Reply
Kendo
Normal user
Normal user
Posts: 76
Joined: 2015-07-08 23:33
Location: Rural Australia

You are only allowed to send from your own account

Post by Kendo » 2019-03-27 01:06

Recently my mail server stopped allowing mail to be sent from my webforms on the same server. The logs show...
"You are only allowed to send from your own account"

All settings look ok.

Image

Server, Computer and Internet are set the same. I rebooted hMailServer just in case, but it is still not allowing mail to be sent from local addresses to local addresses or external addresses.

User avatar
SorenR
Senior user
Senior user
Posts: 3063
Joined: 2006-08-21 15:38
Location: Denmark

Re: You are only allowed to send from your own account

Post by SorenR » 2019-03-27 01:16

Have you changed anything besides the Chinese SPAM rule thing?
SørenR.

The quantum rule of insecurity which states that the act of observing how vulnerable a host or service is changes the insecurity level of the service.

Kendo
Normal user
Normal user
Posts: 76
Joined: 2015-07-08 23:33
Location: Rural Australia

Re: You are only allowed to send from your own account

Post by Kendo » 2019-03-27 01:22

Not that I am aware of. It has been happening since before we added that new rule.

User avatar
mattg
Moderator
Moderator
Posts: 19754
Joined: 2007-06-14 05:12
Location: 'The Outback' Australia

Re: You are only allowed to send from your own account

Post by mattg » 2019-03-27 01:24

Sounds like you have added one of these scripts as well

viewtopic.php?p=68117#p68117
Just 'cause I link to a page and say little else doesn't mean I am not being nice.
https://www.hmailserver.com/documentation

Kendo
Normal user
Normal user
Posts: 76
Joined: 2015-07-08 23:33
Location: Rural Australia

Re: You are only allowed to send from your own account

Post by Kendo » 2019-03-27 01:34

Nice catch. Yes I did add the 2nd script and that must be the cause. Have lost a lot of business since then.

But I don't understand... I thought that I was stopping mail being sent from the same address, like spammers do using From: you@domain.com To: you@domain.com

Anyways, I deleted the rule for now. Thanks!

User avatar
jimimaseye
Moderator
Moderator
Posts: 7923
Joined: 2011-09-08 17:48

Re: You are only allowed to send from your own account

Post by jimimaseye » 2019-03-27 01:46

For full advice and check up run this and post the results: https://www.hmailserver.com/forum/viewt ... 20&t=30914. We will be able to advise what best to do.

[Entered by mobile. Excuse my spelling.]
HMS 5.6.6 B2383 on Win Server 2008 R2 Foundation, + 5.6.7-B2415 on test.
SpamassassinForWindows 3.4.0 spamd service
AV: Clamwin + Clamd service + sanesecurity defs : https://www.hmailserver.com/forum/viewtopic.php?f=21&t=26829

User avatar
mattg
Moderator
Moderator
Posts: 19754
Joined: 2007-06-14 05:12
Location: 'The Outback' Australia

Re: You are only allowed to send from your own account

Post by mattg » 2019-03-27 03:30

Kendo wrote:
2019-03-27 01:34
I thought that I was stopping mail being sent from the same address, like spammers do using From: you@domain.com To: you@domain.com
By default hMailserver allows users to AUTH with one account and send FROM another

Eg

AUTH with 'BartSimpson@example.com' and then send mail FROM 'president@whitehouse.com'
The second script stops that from happening.


To stop mail being FROM your domain to your domain, ensure that local to local requires AUTH in all relevant IP ranges (especially the internet range)
Just 'cause I link to a page and say little else doesn't mean I am not being nice.
https://www.hmailserver.com/documentation

User avatar
jimimaseye
Moderator
Moderator
Posts: 7923
Joined: 2011-09-08 17:48

Re: You are only allowed to send from your own account

Post by jimimaseye » 2019-03-27 09:47

mattg wrote:
2019-03-27 03:30
To stop mail being FROM your domain to your domain, ensure that local to local requires AUTH in all relevant IP ranges (especially the internet range)
Although sound advice, this wont necessarily help his problem, he needs to focus on the 'MY COMPUTER' range:
Kendo wrote:
2019-03-27 01:06
Recently my mail server stopped allowing mail to be sent from my webforms on the same server.
(this is why I suggested he runs the diag report and we can do an overall check for him)
HMS 5.6.6 B2383 on Win Server 2008 R2 Foundation, + 5.6.7-B2415 on test.
SpamassassinForWindows 3.4.0 spamd service
AV: Clamwin + Clamd service + sanesecurity defs : https://www.hmailserver.com/forum/viewtopic.php?f=21&t=26829

Kendo
Normal user
Normal user
Posts: 76
Joined: 2015-07-08 23:33
Location: Rural Australia

Re: You are only allowed to send from your own account

Post by Kendo » 2019-03-28 22:42

I deleted the script mentioned at viewtopic.php?p=68117#p68117 but now have spam sent from myaddess.example.com to myaddress@example.com again, even though I have SPF enabled.

I ran the diagnostic test and all it says is what my settings are...

Code: Select all

2019-03-28   Hmailserver: 5.6.5-B2367

DOMAINS

   "Domain1.com" - adxxxxx.com                    Enabled: True

SIGNATURE         LIMITS                       DKIM               ADVANCED
  Enabled: False   Max size:                0   Enabled: False   
                   Max message size:        0                      Plus addressing: False
                   Max size of accounts:    0                    
                                                                   Greylisting:     False

   "Domain2.com" - adxxxxx.com.au                 Enabled: True

SIGNATURE         LIMITS                       DKIM               ADVANCED
  Enabled: False   Max size:                0   Enabled: False   
                   Max message size:        0                      Plus addressing: False
                   Max size of accounts:    0                    
                                                                   Greylisting:     False

   "Domain3.com" - arxxxxxxxxx.com                Enabled: True

SIGNATURE         LIMITS                       DKIM               ADVANCED
  Enabled: False   Max size:                0   Enabled: False   
                   Max message size:        0                      Plus addressing: False
                   Max size of accounts:    0                    
                                                                   Greylisting:     False

   "Domain4.com" - arxxxxxxxxx.net                Enabled: True

SIGNATURE         LIMITS                       DKIM               ADVANCED
  Enabled: False   Max size:                0   Enabled: False   
                   Max message size:        0                      Plus addressing: False
                   Max size of accounts:    0                    
                                                                   Greylisting:     False

   "Domain5.com" - brxxxx.net.au                  Enabled: False

   "Domain6.com" - coxxxxxx.net                   Enabled: True

SIGNATURE         LIMITS                       DKIM               ADVANCED
  Enabled: False   Max size:                0   Enabled: False   
                   Max message size:        0                      Plus addressing: False
                   Max size of accounts:    0                    
                                                                   Greylisting:     False

   "Domain7.com" - joxxxxxxxxx.com.au             Enabled: True

SIGNATURE         LIMITS                       DKIM               ADVANCED
  Enabled: False   Max size:                0   Enabled: False   
                   Max message size:        0                      Plus addressing: False
                   Max size of accounts:    0                    
                                                                   Greylisting:     False
-----------------------------------------------------------------------------------------------

IP RANGES

IP: 64.xxxxxxxxxx - 64.xxxxxxxxxxx     Priority: 30     Name: Server

  Allow connections                         Other
     SMTP:   True                              Antispam :   True
     POP3:  False                              Antivirus:  False
     IMAP:  False                              SSL/TLS:    False

  Allow Deliveries from                     Require Authentication from
     Local To Local       -  True              Local To Local       - False
     Local To External    -  True              Local To External    - False
     External To Local    -  True              External To Local    - False
     External To External - False           


IP: 127.0.0.1 - 127.0.0.1     Priority: 15     Name: My computer

  Allow connections                         Other
     SMTP:   True                              Antispam :   True
     POP3:  False                              Antivirus:  False
     IMAP:  False                              SSL/TLS:    False

  Allow Deliveries from                     Require Authentication from
     Local To Local       -  True              Local To Local       - False
     Local To External    -  True              Local To External    - False
     External To Local    -  True              External To Local    - False
     External To External - False           


IP: 0.0.0.0 - 255.255.255.255     Priority: 10     Name: Internet

  Allow connections                         Other
     SMTP:   True                              Antispam :   True
     POP3:  False                              Antivirus:  False
     IMAP:  False                              SSL/TLS:    False

  Allow Deliveries from                     Require Authentication from
     Local To Local       -  True              Local To Local       - False
     Local To External    -  True              Local To External    - False
     External To Local    -  True              External To Local    - False
     External To External - False           


------------------------------------------------------
AUTOBANNED Local Addresses:
    No entries

-----------------------------------------------------------------------------------------------

AUTOBAN
  Autoban Enabled: True       Max invalid logon attempts:      3
                              Minutes Before Reset:           60  (1.00 hours, 0.04 days)
                              Minutes to Autoban:            120  (2.00 hours, 0.08 days)

There is a total of 15 auto-ban IP ranges.
-----------------------------------------------------------------------------------------------

INCOMING RELAYS
   No entries
-----------------------------------------------------------------------------------------------

MIRRORING         Disabled
-----------------------------------------------------------------------------------------------

PROTOCOLS

SMTP
GENERAL             DELIVERY                  RFC COMPLIANCE            ADVANCED
No. Connections:  0  No Retries:  4 Mins: 60   Plain Text:         True  Bind: 64.71.130.99
                     Host: EXTERNAL.TLD        Empty sender:       True  Batch recipients:   100
Max Msg Size: 20480  Relay:-                   Incorrect endings:  True  Use STARTTLS:      True
                     (none entered)            Disc. on invalid:   True  Delivered-To hdr: False
                                               Max number commands: 100  Loop limit:           5
                                                                         Recipient hosts:     50
  Routes:
     No routes defined.

POP3
  No. Connections: 0

IMAP
 GENERAL                   PUBLIC FOLDERS                    ADVANCED
  No. Connections:   0      Public folder name: #Public       IMAP sort:  True
                                                              IMAP Quota: True
                                                              IMAP Idle:  True
                                                              IMAP ACL:   True
                                                              Delim: "."
-----------------------------------------------------------------------------------------------

ANTISPAM

GENERAL                              SPAM TESTS              Score   SPAMASSASSIN
  Spam Mark:                  5       Use SPF:            True - 5    Use Spamassassin:   False
  Add X-HmailServer-Spam:     True    Check HELO host:    True - 2
  Add X-HmailServer-Reason:   True    Check MX records:   True - 2
  Add X-HmailServer-Subject: False    Verify DKIM:       False    

  Spam delete threshold: 5         Maximum message size: 1024

DNSBL ENTRIES:
   No 'enabled' entries

SURBL ENTRIES:
   No 'enabled' entries

GREYLISTING:
  Greylisting:  False

WHITELISTING
   No entries
-----------------------------------------------------------------------------------------------

ANTIVIRUS:  No application configured.

  Block Attachments: True
               *.bat             Batch processing file
               *.cmd             Command file for Windows NT
               *.com             Command
               *.cpl             Windows Control Panel extension
               *.csh             CSH script
               *.exe             Executable file
               *.inf             Setup file
               *.lnk             Windows link file
               *.msi             Windows Installer file
               *.msp             Windows Installer patch
               *.pif             Program Information file
               *.reg             Registration key
               *.scf             Windows Explorer command
               *.scr             Windows Screen saver
-----------------------------------------------------------------------------------------------

SSL CERTIFICATES
   No entries
-----------------------------------------------------------------------------------------------

SSL/TLS
             SSL 3.0 :   True
             TLS 1.0 :   True
             TLS 1.1 :   True
             TLS 1.2 :   True                Verify Remote SSL/TLS Certs:   True
SslCipherList  :

ECDHE-RSA-AES128-GCM-SHA256     - ECDHE-ECDSA-AES128-GCM-SHA256   - ECDHE-RSA-AES256-GCM-SHA384     
ECDHE-ECDSA-AES256-GCM-SHA384   - DHE-RSA-AES128-GCM-SHA256       - DHE-DSS-AES128-GCM-SHA256       
kEDH+AESGCM                     - ECDHE-RSA-AES128-SHA256         - ECDHE-ECDSA-AES128-SHA256       
ECDHE-RSA-AES128-SHA            - ECDHE-ECDSA-AES128-SHA          - ECDHE-RSA-AES256-SHA384         
ECDHE-ECDSA-AES256-SHA384       - ECDHE-RSA-AES256-SHA            - ECDHE-ECDSA-AES256-SHA          
DHE-RSA-AES128-SHA256           - DHE-RSA-AES128-SHA              - DHE-DSS-AES128-SHA256           
DHE-RSA-AES256-SHA256           - DHE-DSS-AES256-SHA              - DHE-RSA-AES256-SHA              
AES128-GCM-SHA256               - AES256-GCM-SHA384               - ECDHE-RSA-RC4-SHA               
ECDHE-ECDSA-RC4-SHA             - AES128                          - AES256                          
RC4-SHA                         - HIGH                            - !aNULL                          
!eNULL                          - !EXPORT                         - !DES                            
!3DES                           - !MD5                            - !PSK;                           
-----------------------------------------------------------------------------------------------

TCPIP PORTS                                         Connection Sec
               0.0.0.0         / 25    / SMTP   -   None                
               0.0.0.0         / 110   / POP3   -   None                
               0.0.0.0         / 143   / IMAP   -   None                
               0.0.0.0         / 587   / SMTP   -   None                
-----------------------------------------------------------------------------------------------

LOGGING      Logging Enabled: True

  Paths:-
    Current:  C:\Program Files (x86)\hMailServer\Logs\hmailserver_2019-03-28.log
    Error:    C:\Program Files (x86)\hMailServer\Logs\ERROR_hmailserver_2019-03-28.log
    Event:    C:\Program Files (x86)\hMailServer\Logs\hmailserver_events.log - Not present
    Awstats:  C:\Program Files (x86)\hMailServer\Logs\hmailserver_awstats.log
                        APPLICATION -      .
                        SMTP        -    True
                        POP3        -      .
                        IMAP        -      .
                        TCPIP       -      .
                        DEBUG       -      .
                        AWSTATS     -      .
-----------------------------------------------------------------------------------------------

SYSTEM TESTS

Database type: MSSQL Compact

IPv6 support is available in operating system.

Backup directory C:\inetpub\htdocs\temp is writable.

Relative message paths are stored in the database for all messages.

-----------------------------------------------------------------------------------------------

HMAILSERVER.INI

[Directories]
Program folder:  C:\Program Files (x86)\hMailServer\
Database folder: C:\Program Files (x86)\hMailServer\Database
Data folder:     C:\Program Files (x86)\hMailServer\Data
Log folder:      C:\Program Files (x86)\hMailServer\Logs
Temp folder:     C:\Program Files (x86)\hMailServer\Temp
Event folder:    C:\Program Files (x86)\hMailServer\Events

[Database]
Type=              MSSQLCE
Username=           
PasswordEncryption=1
Port=              0
Server=             
Internal=          1
Apparently I raised the question of SPF not working before at https://www.hmailserver.com/forum/viewt ... =7&t=30372 which recommended using a script mentioned above. While that solved this problem, it also blocked any mail sent to me by from sites on server.

None of my sites send myaddess.example.com to myaddress@example.com. Instead they are all someaddress@example.com to myaddress@example.com. So I need 2 things:

1. SPF working
2. script to block myaddess@example.com to myaddress@example.com

User avatar
SorenR
Senior user
Senior user
Posts: 3063
Joined: 2006-08-21 15:38
Location: Denmark

Re: You are only allowed to send from your own account

Post by SorenR » 2019-03-28 22:48

SPF will not save you....

Authentication on "Local To Local" and "Local To External" will...
As it is right now you might as well have a big sign saying "WELCOME to my server! The world is open from here."
SørenR.

The quantum rule of insecurity which states that the act of observing how vulnerable a host or service is changes the insecurity level of the service.

Kendo
Normal user
Normal user
Posts: 76
Joined: 2015-07-08 23:33
Location: Rural Australia

Re: You are only allowed to send from your own account

Post by Kendo » 2019-03-28 23:04

Ah, on Internet only?

Image

Kendo
Normal user
Normal user
Posts: 76
Joined: 2015-07-08 23:33
Location: Rural Australia

Re: You are only allowed to send from your own account

Post by Kendo » 2019-03-29 00:11

mattg wrote:
2019-03-27 03:30
By default hMailserver allows users to AUTH with one account and send FROM another
Where are these set?

User avatar
SorenR
Senior user
Senior user
Posts: 3063
Joined: 2006-08-21 15:38
Location: Denmark

Re: You are only allowed to send from your own account

Post by SorenR » 2019-03-29 00:17

Kendo wrote:
2019-03-28 23:04
Ah, on Internet only?

Image
That would work...

How do your customers send mail normally? Webmail only?
SørenR.

The quantum rule of insecurity which states that the act of observing how vulnerable a host or service is changes the insecurity level of the service.

Kendo
Normal user
Normal user
Posts: 76
Joined: 2015-07-08 23:33
Location: Rural Australia

Re: You are only allowed to send from your own account

Post by Kendo » 2019-03-29 00:18

Without any SMTP Authentication settings, why doesn't SPF prevent non-authorised IP adresses as senders?

Kendo
Normal user
Normal user
Posts: 76
Joined: 2015-07-08 23:33
Location: Rural Australia

Re: You are only allowed to send from your own account

Post by Kendo » 2019-03-29 00:20

SorenR wrote:
2019-03-29 00:17
How do your customers send mail normally? Webmail only?
New clients use a webform on one of the websites. Some sites are on the same server and some on another (apache) server.

Established contacts email directly from their mail client.

User avatar
SorenR
Senior user
Senior user
Posts: 3063
Joined: 2006-08-21 15:38
Location: Denmark

Re: You are only allowed to send from your own account

Post by SorenR » 2019-03-29 00:29

Kendo wrote:
2019-03-29 00:20
SorenR wrote:
2019-03-29 00:17
How do your customers send mail normally? Webmail only?
New clients use a webform on one of the websites. Some sites are on the same server and some on another (apache) server.

Established contacts email directly from their mail client.
Right... Since you removed "Local-to-Local" and "Local-to-External" they can no longer send mail!

You should enable "Local-to-Local" and "Local-to-External" WITH authentication and "External-to-Local" WITHOUT authentication to restore service.
SørenR.

The quantum rule of insecurity which states that the act of observing how vulnerable a host or service is changes the insecurity level of the service.

User avatar
SorenR
Senior user
Senior user
Posts: 3063
Joined: 2006-08-21 15:38
Location: Denmark

Re: You are only allowed to send from your own account

Post by SorenR » 2019-03-29 00:38

Erhm... I just had a closer look through your diagnostics...

What exactly is the role of hMailServer in your organisation?

The way I see it it is sort of "first in - never out"ish ... :?
SørenR.

The quantum rule of insecurity which states that the act of observing how vulnerable a host or service is changes the insecurity level of the service.

Kendo
Normal user
Normal user
Posts: 76
Joined: 2015-07-08 23:33
Location: Rural Australia

Re: You are only allowed to send from your own account

Post by Kendo » 2019-03-29 00:49

SorenR wrote:
2019-03-29 00:38
What exactly is the role of hMailServer in your organisation?
1. To send mail from webforms on the same server.
2. To send mail from cms on the same server... from authors to subscribers.
3. To receive mail sent to the listed domains/accounts.
4. Received mail then gets resent to a separate server for POP pickup.

User avatar
SorenR
Senior user
Senior user
Posts: 3063
Joined: 2006-08-21 15:38
Location: Denmark

Re: You are only allowed to send from your own account

Post by SorenR » 2019-03-29 01:41

Kendo wrote:
2019-03-29 00:49
SorenR wrote:
2019-03-29 00:38
What exactly is the role of hMailServer in your organisation?
1. To send mail from webforms on the same server.
2. To send mail from cms on the same server... from authors to subscribers.
3. To receive mail sent to the listed domains/accounts.
4. Received mail then gets resent to a separate server for POP pickup. <=== !!
OK, that explains the missing IMAP and POP access, so I't mainly automation and filtering. :mrgreen:
SørenR.

The quantum rule of insecurity which states that the act of observing how vulnerable a host or service is changes the insecurity level of the service.

Kendo
Normal user
Normal user
Posts: 76
Joined: 2015-07-08 23:33
Location: Rural Australia

Re: You are only allowed to send from your own account

Post by Kendo » 2019-03-29 02:01

Without any SMTP Authentication settings, why doesn't SPF prevent non-authorised IP addresses as senders using local email addresses?

User avatar
jimimaseye
Moderator
Moderator
Posts: 7923
Joined: 2011-09-08 17:48

Re: You are only allowed to send from your own account

Post by jimimaseye » 2019-03-29 02:13

Possible soft fail? Misconfiguration? What is your spf record?

[Entered by mobile. Excuse my spelling.]
HMS 5.6.6 B2383 on Win Server 2008 R2 Foundation, + 5.6.7-B2415 on test.
SpamassassinForWindows 3.4.0 spamd service
AV: Clamwin + Clamd service + sanesecurity defs : https://www.hmailserver.com/forum/viewtopic.php?f=21&t=26829

Kendo
Normal user
Normal user
Posts: 76
Joined: 2015-07-08 23:33
Location: Rural Australia

Re: You are only allowed to send from your own account

Post by Kendo » 2019-03-29 02:29

jimimaseye wrote:
2019-03-29 02:13
What is your spf record?
v=spf1 a mx ptr a:cp12.example.com ip4:64.71.130.99 ip4:64.71.130.100 ip4:64.71.130.101 ip4:64.71.130.102 ip4:64.71.130.103 ip4:74.200.85.166 ip4:64.202.189.1/16 ip4:116.250.207.34 ip4:116.250.255.1/16 ip4:116.250.254.1/16 include:apn.net.au -all

User avatar
jimimaseye
Moderator
Moderator
Posts: 7923
Joined: 2011-09-08 17:48

Re: You are only allowed to send from your own account

Post by jimimaseye » 2019-03-29 09:48

Kendo wrote:
2019-03-29 02:29
jimimaseye wrote:
2019-03-29 02:13
What is your spf record?
v=spf1 a mx ptr a:cp12.example.com ip4:64.71.130.99 ip4:64.71.130.100 ip4:64.71.130.101 ip4:64.71.130.102 ip4:64.71.130.103 ip4:74.200.85.166 ip4:64.202.189.1/16 ip4:116.250.207.34 ip4:116.250.255.1/16 ip4:116.250.254.1/16 include:apn.net.au -all
Your SPF record allows your own mail server to send emails. Given you had internet ranges open, the spammer just need to connect to your box and then send the emails Local to Local (just as Soren described earlier). And your SPF record allows them.

So, tighten/implement authentication on your ip ranges (as previously discussed).
HMS 5.6.6 B2383 on Win Server 2008 R2 Foundation, + 5.6.7-B2415 on test.
SpamassassinForWindows 3.4.0 spamd service
AV: Clamwin + Clamd service + sanesecurity defs : https://www.hmailserver.com/forum/viewtopic.php?f=21&t=26829

Kendo
Normal user
Normal user
Posts: 76
Joined: 2015-07-08 23:33
Location: Rural Australia

Re: You are only allowed to send from your own account

Post by Kendo » 2019-03-29 10:37

jimimaseye wrote:
2019-03-29 09:48
Your SPF record allows your own mail server to send emails.
Of course it does. It is also listed as an allowed IP address. How else can websites hosted on it send mail outward?

User avatar
jimimaseye
Moderator
Moderator
Posts: 7923
Joined: 2011-09-08 17:48

Re: You are only allowed to send from your own account

Post by jimimaseye » 2019-03-29 15:12

I didn't say it was wrong. I was explaining why you were allowing spam through and that your spf is NOT the problem.

[Entered by mobile. Excuse my spelling.]
HMS 5.6.6 B2383 on Win Server 2008 R2 Foundation, + 5.6.7-B2415 on test.
SpamassassinForWindows 3.4.0 spamd service
AV: Clamwin + Clamd service + sanesecurity defs : https://www.hmailserver.com/forum/viewtopic.php?f=21&t=26829

Kendo
Normal user
Normal user
Posts: 76
Joined: 2015-07-08 23:33
Location: Rural Australia

Re: You are only allowed to send from your own account

Post by Kendo » 2019-04-12 23:00

In the settings for IP Ranges there are 3 options:

- Server
- My computer
- Internet

I assume that "Internet" means email sent via the internet using normal channel for SMTP, but what do the other 2 options mean specifically?

For example a spammer sending direct via my server... will appears as a local sender and be which option?

User avatar
SorenR
Senior user
Senior user
Posts: 3063
Joined: 2006-08-21 15:38
Location: Denmark

Re: You are only allowed to send from your own account

Post by SorenR » 2019-04-12 23:31

Kendo wrote:
2019-04-12 23:00
In the settings for IP Ranges there are 3 options:

- Server
- My computer
- Internet

I assume that "Internet" means email sent via the internet using normal channel for SMTP, but what do the other 2 options mean specifically?

For example a spammer sending direct via my server... will appears as a local sender and be which option?
You can name the ranges any way you like. IP Ranges specify the permissions for any client/server in that particular IP range. Look at it like an inbound (to hMailServer) firewall.
Ranges can overlap and highest priority wins regardless of options.
For example, the AutoBan system will set a 1 IP address range with the offending IP address, all options off, put an expiration date on and set priority to 20. For ANY range below priority 20 with a matching IP address, the IP address will be IGNORED!

You can define your LAN range eg. priority 10, to require AUTH for SMTP, POP and IMAP and define a single IP address in the same IP range for your Backup automation server priority 11 to NOT require AUTH for SMTP if the software do not support it. Also you can allow or diallow POP/IMAP, allow or disallow sending mails to external recipients and so on.

The terms "Local" and "External" are not physical (like a firewall). "Locals" are YOUR hosted domains and "Externals" is everyone else. A user logging in from a different country with an account on your domain is still a "Local".

I hope that will clear things up a bit...

Usually pressing the "Default" button will set all IP Ranges to "Factory Default" and reasonable safe.

PS... There are a couple of pitfalls like; Assign your webmail server a priority > 20 if you do not want to shut it down due to some user forgetting his/hers password. ;-) Also relay servers like Backup-MX'es should be priority > 20 just in case and probably also your main AD/Admin client so you at least have one way in. 8)
SørenR.

The quantum rule of insecurity which states that the act of observing how vulnerable a host or service is changes the insecurity level of the service.

Kendo
Normal user
Normal user
Posts: 76
Joined: 2015-07-08 23:33
Location: Rural Australia

Re: You are only allowed to send from your own account

Post by Kendo » 2019-04-12 23:43

I understand the "local" and "external" email address difference and assume that the "Internet" range is for mail sent via SMTP to my server from outside the server, but what is the significance/difference between "Server, My Computer and Internet"?

User avatar
SorenR
Senior user
Senior user
Posts: 3063
Joined: 2006-08-21 15:38
Location: Denmark

Re: You are only allowed to send from your own account

Post by SorenR » 2019-04-13 00:10

Kendo wrote:
2019-04-12 23:43
I understand the "local" and "external" email address difference and assume that the "Internet" range is for mail sent via SMTP to my server from outside the server, but what is the significance/difference between "Server, My Computer and Internet"?
"Server" ... Public (or pseudo-public LAN) IP address.
"My Computer" ... I assume this is localhost - to be used for hosting IIS and webmail - or webforms... Maybe...
"Internet" ... Is indeed - the rest of the IP world.

I presume "Server" and "My Computer" are there in case someone plants a BOT on the machine.
SørenR.

The quantum rule of insecurity which states that the act of observing how vulnerable a host or service is changes the insecurity level of the service.

Kendo
Normal user
Normal user
Posts: 76
Joined: 2015-07-08 23:33
Location: Rural Australia

Re: You are only allowed to send from your own account

Post by Kendo » 2019-04-13 01:32

And spammers sending mail via command prompt will be seen as Server or My Computer?

User avatar
mattg
Moderator
Moderator
Posts: 19754
Joined: 2007-06-14 05:12
Location: 'The Outback' Australia

Re: You are only allowed to send from your own account

Post by mattg » 2019-04-13 01:38

Just to be clear

The default is 'My Computer' + 'Internet'

With my Computer being 127.0.0.1 to 127.0.0.1 with a priority of 15
Internet is 0.0.0.0 to 255.255.255.255 with a priority of 10

This can be achieved by pressing the 'default' button on the IP ranges page

If you have anything else listed there, you have added it.


Which one applies depends on the IP used in the connection, and the priority of that applicable IP range.

Higher priority number is a higher priority, ie 50 takes precedence over 20
Autobans are created automatically at priority 20

You need to see where the spammers are connecting from in the SMTP logs, and then use that IP address to work out which IP range applies.

A command prompt on the same machine as hMailserver is PROBABLY connecting from 127.0.0.1

If you have a spammer connecting from the machine that hMailserver is installed on, then you have a BIG problem
Just 'cause I link to a page and say little else doesn't mean I am not being nice.
https://www.hmailserver.com/documentation

Post Reply