book

Exim: The Mail Transfer Agent

by Philip Hazel

July 2001

Intermediate to advanced

640 pages

18h 9m

English

O'Reilly Media, Inc.

Read now

Unlock full access

Organization of the BookConventions Used in This BookComments and QuestionsAcknowledgments
Different Types of MTAInternet Message StandardsRFC 822 Message FormatThe Message “On the Wire”Summary of the SMTP ProtocolForgeryAuthentication and EncryptionRouting a MessageChecking Incoming MailOverview of the DNSDNS Records Used for Mail RoutingRelated DNS RecordsCommon DNS ErrorsRole of the Postmaster
Exim PhilosophyExim’s QueueReceiving and Delivering MessagesExim ProcessesCoordination Between ProcessesHow Exim Is ConfiguredHow Exim Delivers MessagesLocal and Remote AddressesProcessing an AddressA Simple ExampleComplications While Directing and RoutingDuplicate AddressesMissing DataDirecting LoopsRemote Address Becoming LocalRemote Address Routing to the Local HostComplications During DeliveryComplications After DeliveryUse of Transports by Directors and Routers
How Exim Identifies MessagesWatching Exim at WorkThe Runtime Configuration FileLayout of the Configuration FileA Minimal Usable Configuration FileOption Setting SyntaxMacros in the Configuration FileHiding Configuration DataString ExpansionsFile and Database LookupsDomain, Host, and Address ListsThe Default Qualification DomainHandling Frozen Bounce MessagesReducing Activity at High LoadDelaying or Suspending Delivery When the Load Is HighSuspending Incoming Mail When the Load Is HighControlling the Number of Incoming SMTP ConnectionsChecking for Free Disk SpaceLimiting Message SizesParallel Remote DeliveryControlling the Number of Delivery ProcessesLarge Message QueuesLarge InstallationsLinear Password FilesMailbox DirectoriesSimultaneous Message DeliveriesMinimizing Name Server DelaysStoring Messages for Dial-up HostsHardware Configuration
Multiple Local DomainsDifferentiating Between Multiple DomainsVirtual DomainsDefaults in Virtual DomainsPostmasters in Virtual DomainsMailing ListsSyntax Errors in Mailing ListsNFS-Mounted Mailing ListsReexpansion of Mailing ListsClosed Mailing ListsExternal Mailing List SoftwareUsing an External Local Delivery AgentMultiple User AddressesMixed Local/Remote DomainsDelivering to UUCPIgnoring the Local Part in Local DeliveriesHandling Local Parts in a Case-Sensitive MannerScanning Messages for VirusesVirus Checking on the Local HostVirus Checking on an External HostModifying Message Bodies
Conditional Running of Routers and DirectorsRestricting Drivers to Specific DomainsStopping an Address from Being Passed OnRestricting Drivers to Specific Local PartsRestricting Drivers to Specific SendersRestricting Drivers by Other ConditionsRestricting a Driver to Verification OnlyRestricting Drivers by File ExistenceInteraction of ConditionsChanging a Driver’s Successful OutcomeAdding Data for Use by TransportsAdding or Removing Header LinesChanging the Return PathControlling the Environment for Local DeliveriesSpecifying fallback_hostsDebugging Directors and RoutersSummary of Director/Router Generic Options
Conditional Running of DirectorsLocal Part Prefixes and SuffixesControl of EXPNOptimizing Single-Level AliasingAdding Data for Use by TransportsThe aliasfile and forwardfile DirectorsItems in Alias and Forward ListsDuplicate addressesIncluding the incoming address in a listA bad interaction between aliases and forwardingNonaddress alias and forward itemsNonaddress alias-only itemsOptions Common to aliasfile and forwardfileChecks on file attributesAncestor checkingTransports for pipes and filesDisabling pipes and filesUnqualified addressesRewriting generated addressesOne-time aliasing and forwardingMissing include filesSyntax errors in alias or forward listsTelling users about broken .forward filesSummary of Options Common to aliasfile and forwardfileThe aliasfile DirectorSpecifying the LookupExpanding a List of AliasesSpecifying a Transport for aliasfileSummary of aliasfile OptionsThe forwardfile DirectorContents of forwardfile ListsSpecifying a .forward FileSpecifying an Inline Forwarding ListChecking Local UsersSpecial Error HandlingDisabling Certain FeaturesEnabling Certain System ActionsThe $home VariableCurrent and Home DirectoriesSummary of forwardfile OptionsThe localuser DirectorTransports for localuserChecking the Home DirectoryThe smartuser DirectorUsing smartuser to Generate New AddressesUsing smartuser to Direct to a TransportSummary of smartuser Options
Timeouts While RoutingDomains That Route to the Local HostTreating Domains Routed to self as LocalPassing Domains Routed to self to the Next RouterRerouting Domains Routed to selfFailing Domains Routed to SelfTransporting Domains Routed to selfDeferring Domains Routed to selfThe lookuphost RouterControlling DNS lookupsConditions for MX RecordsUsing the System’s Host lookup Instead of the DNSExplicit lookup WideningHeader RewritingSummary of lookuphost OptionsThe domainlist RouterInline Routing RulesLooked-up Routing RulesPreprocessing the Host ListRouting to a Local TransportUsing domainlist on a Mail HubVarying the TransportUsing domainlist to Change the Routing DomainOther domainlist OptionsSummary of domainlist OptionsThe ipliteral RouterThe queryprogram RouterThe queryprogram CommandRunning the queryprogram CommandThe Result of the queryprogram CommandSummary of queryprogram Options

Options Common to All TransportsDebugging TransportsTransporting Only Part of a MessageControlling Message SizeAdding and Removing Header LinesRewriting Addresses in Header LinesChanging the Return PathTransport FiltersShadow TransportsSummary of Generic Transport OptionsThe smtp TransportControl of Multiple AddressesControl of Outgoing CallsControl of the TCP/IP ConnectionUse of the SIZE Option in SMTPUse of the AUTH Command in SMTPUse of the LMTP ProtocolSpecifying HostsSpecifying a primary host listOverriding a router’s host listRandomizing a host listSpecifying a fallback host listLooking up IP addressesHandling the local hostControl of RetryingSummary of smtp OptionsEnvironment for Local TransportsUids and GidsCurrent and Home DirectoriesExpansion Variables Derived from the AddressOptions Common to the appendfile and pipe TransportsControlling the Delivery EnvironmentControlling the Format of the MessageSeparating messages in a single fileEscaping lines in the messageControl of line terminatorsBatched Delivery and BSMTPA non-BSMTP batching exampleA BSMTP batching exampleUse of multiple files for batched messagesControl of RetryingSummary of Options Common to appendfile and pipeThe appendfile TransportSetting Up a Multimessage File for AppendingMailbox locationSymbolic links for mailbox filesDelivering to named pipes (FIFOs)Creating a nonexistent fileThe owner of an existing fileThe mode of the fileFormat of Appended MessagesMBX format mailboxesChecking an existing file’s formatLocking a File for AppendingLocking using a lock fileUsing a locking functionWhy use lock files?Locking options for non-MBX mailboxesLocking options for MBX mailboxesDelivering Each Message into a Separate FileMaildir FormatMailbox QuotasInclusive and Exclusive QuotasQuota WarningsNotifying comsatSummary of appendfile OptionsThe pipe TransportDefining the Command to RunThe Uid and Gid for the CommandRunning the CommandParsing the command lineUsing a shellThe Command EnvironmentTiming the CommandRestricting Which Commands Can Be RunHandling Command ErrorsHandling Output from the CommandSummary of pipe OptionsThe lmtp TransportThe autoreply TransportThe Parameters of the MessageOnce-Only MessagesKeeping a Log of Messages SentSummary of autoreply Options
Examples of Filter CommandsFiltering Compared with an External Delivery AgentSetting Up a User FilterSetting Up a System FilterSummary of System Filter OptionsTesting Filter FilesTesting a System Filter FileTesting an Installed Filter FileFormat of Filter FilesSignificant ActionsFilter CommandsThe add CommandDelivery CommandsThe deliver CommandThe save CommandThe pipe CommandIgnoring Delivery ErrorsMail CommandsLogging CommandsThe testprint CommandThe finish CommandObeying Filter Commands ConditionallyString Testing ConditionsNumeric Testing ConditionsTesting for Personal MailTesting for Significant ActionsTesting for Error MessagesTesting Delivery StatusTesting a List of AddressesAdditional Features for System FiltersThe fail CommandThe freeze CommandThe headers add CommandThe headers remove Command
Message FilesLocking Message FilesHints FilesLog FilesUser and Group IDs for Exim ProcessesProcess RelationshipsThe Daemon ProcessSummary of Options for the DaemonReception ProcessesQueue Runner ProcessesSpecial Kinds of Queue RunDelivery ProcessesVariations on DeliverySummary of Message Handling Process TypesOther Types of Process
Retrying After ErrorsRemote Delivery ErrorsHost ErrorsMessage ErrorsRecipient ErrorsProblems of Error ClassificationDelivery to Multiple HostsLocal Delivery ErrorsRouting and Directing ErrorsRetry RulesRetry Rule PatternsRetry Rule Error NamesRetry Rule Parameter SetsComputing Retry TimesUsing Retry TimesRetry Rule ExamplesTimeout of Retry DataLong-Term FailuresUltimate Address TimeoutIntermittently Connected HostsIncoming Mail for an Intermittently Connected HostExim on an Intermittently Connected HostThe daemon on an intermittently connected hostIncoming mail on an intermittently connected host
Message SourcesMessage Size ControlMessages from Local ProcessesAddresses in Header LinesSpecifying Recipient AddressesLocal Sender AddressesUnqualified Addresses from Remote HostsChecking a Remote HostVerifying a Host’s NameVerifying EHLO or HELOUsing a DNS Blocking ListConfiguring Exim to use an RBLRBL warningsRBL rejectionUsing RBL data valuesRemaining RBL optionsExplicit Host BlockingChecking Remote Sender AddressesVerifying SMTP Sender AddressesVerify callbacksConfiguring routers and directors for verificationExceptions to Sender VerificationTemporary Sender Verification FailuresPermanent Sender Verification FailuresFixing Bad Envelope SendersTesting Sender VerificationChecking Senders in Header LinesExplicitly Rejecting SendersSummary of Sender Checking OptionsChecking Recipient AddressesVerifying Recipient AddressesConditional Recipient VerificationTesting Recipient VerificationExplicitly Rejecting RecipientsSummary of Recipient Rejection OptionsChecking Header Line SyntaxRelay ControlIncoming and Outgoing RelayingRelay CheckingLocal parts containing % or @Incomplete domainsIncoming RelayingAutomatic relaying for MX backupsOutgoing RelayingRelaying from authenticated hostsRelaying using encryptionRelaying from specific sendersPermitting relaying by host or senderSummary of Relay Control OptionsCustomizing Prohibition MessagesIncoming Message ProcessingThe UUCP “From” LineThe From: Header LineThe Sender: Header LineThe Bcc:, Cc:, and To: Header LinesThe Return-path:, Envelope-to:, and Delivery-date: Header LinesThe Date: Header LineThe Message-id: Header LineThe Received: Header Line
Automatic RewritingConfigured RewritingGeneral RewritingPer-Transport RewritingRewriting RulesFormat of Rewriting RulesApplying Rewriting RulesConditional RewritingLookup-Driven RewritingRewriting PatternsRewriting FlagsFlags Specifying What to RewriteFlags Controlling the Rewriting ProcessThe SMTP-Time Rewriting FlagA Further Rewriting ExampleTesting Rewriting Rules
SMTP AuthenticationAuthentication MechanismsPLAIN AuthenticationLOGIN AuthenticationCRAM-MD5 AuthenticationChoice of Authentication MechanismExim AuthenticatorsAuthentication on an Exim ServerAdvertising AuthenticationTesting Server AuthenticationAuthenticated SendersAuthentication by an Exim ClientOptions Common to All AuthenticatorsUsing the plaintext Authenticator in a ServerUsing plaintext in a ClientUsing cram_md5 in a ServerUsing cram_md5 in a ClientEncrypted SMTP ConnectionsConfiguring Exim to Use TLS as a ServerSetting Conditions on TLS ConnectionsForcing Clients to Use TLSAllowing Relaying over TLS SessionsVariables That Are Set for a TLS ConnectionConfiguring Exim to Use TLS as a ClientSMTP over TCP/IPOutgoing SMTP over TCP/IPIncoming SMTP Messages over TCP/IPThe VRFY and EXPN CommandsThe ETRN CommandLocal SMTPBatched SMTP
Single-Key Lookup TypesQuery-Style Lookup TypesQuoting Lookup DataNIS+LDAPData Returned by an LDAP LookupMySQL and PostgreSQLDNS LookupsImplicit Keys in Query-Style LookupsTemporary Errors in LookupsDefault Values in Single-Key LookupsPartial Matching in Single-Key LookupsLookup Caching
Variable SubstitutionHeader InsertionOperations on SubstringsExtracting the Initial Part of a SubstringExtracting an Arbitrary Part of a SubstringHashing OperatorsForcing the Case of LettersCharacter TranslationText SubstitutionConditional ExpansionTesting for a Specific StringNegated ConditionsRegular Expression MatchingEncrypted String ComparisonPAM AuthenticationNumeric ComparisonsEmpty Variables and Nonexistent Header LinesFile ExistenceThe State of a Message’s DeliveryCombining Expansion ConditionsForcing Expansion FailureLookups in Expansion StringsSingle-Key Lookups in Expansion StringsPartial Lookups in Expansion StringsSingle-Key Lookup FailuresQuery-Style Lookups in Expansion StringsReducing the Number of Database QueriesDefaults for Lookups in Expansion StringsA Shorthand for One Common CaseExtracting Fields from SubstringsSplitting Up AddressesExtracting Named Fields from a Line of DataExtracting Unnamed Fields from a Line of DataIP Address MaskingQuotingQuoting AddressesQuoting Data for Regular ExpressionsQuoting Data in Lookup QueriesQuoting Printing DataReexpansionRunning Embedded PerlTesting String Expansions
Negative Items in ListsList Items in FilesLookup Items in ListsDomain ListsHost ListsHost Checks by IP AddressHost Checking Using Forward LookupHost Checking Using Reverse LookupUse of RFC 1413 Identification in Host ListsAddress ListsCase of Letters in Address Lists
Security IssuesUse of Root PrivilegeHow Unix uses uids to control privilegeWhy does Exim need root privilege?Relinquishing root privilegeThe security optionRunning Local Deliveries as rootRunning an Unprivileged EximPrivileged UsersTrusted UsersSetting the sender of a locally submitted messageSetting other information in a locally submitted messageAdmin UsersRFC Conformance8-Bit CharactersAddress SyntaxBuilt-in address syntax extensionsConfigurable address syntax extensionsDomain literal addressesSource routed addressesCanonicizing AddressesCoping with Broken MX RecordsLine Terminators in SMTPSyntax of HELO and EHLOTimestampsChecking Spool SpaceControl of DNS LookupsBounce Message HandlingReplying to Bounce MessagesTaking Copies of Bounce MessagesMessages to PostmasterDelay Warning MessagesCustomizing Bounce MessagesCustomizing Warning MessagesMiscellaneous Controls
Input Mode ControlStarting a Daemon ProcessInteractive SMTP ReceptionBatch SMTP ReceptionNon-SMTP receptionSummary of Reception OptionsAdditional Message DataSender AddressSender NameRemote Host InformationImmediate Delivery ControlError RoutingQueue Runner ProcessesOverriding Retry Times and FreezingLocal Addresses OnlyTwo-Pass Processing for Remote AddressesPeriodic Queue RunsProcessing Specific MessagesProcessing Specific AddressesSummary of Queue Runner OptionsConfiguration OverridesWatching Exim’s QueueMessage ControlOperations on a List of MessagesInspecting a Queued MessageModifying a Queued MessageSummary of Message Control OptionsTesting OptionsTesting the Configuration SettingsTesting Address HandlingTesting Incoming ConnectionsTesting Retry RulesTesting Rewriting RulesTesting Filter FilesTesting String ExpansionOptions for DebuggingSuppressing DeliveryTerminating the OptionsEmbedded Perl OptionsCompatibility with SendmailCalling Exim by Different Names
Log FilesLog Destination ControlLogging to syslogLog LevelOther Options Affecting Log ContentFormat of Main Log EntriesLogging Message ReceptionLogging DeliveriesDeferred DeliveriesDelivery FailuresMessage CompletionOther Log EntriesCycling Log FilesExtracting Information from Log FilesThe exigrep UtilityThe eximstats UtilityWatching What Exim is DoingThe exiqsumm UtilityThe exinext UtilityQuerying Exim ProcessesThe Exim MonitorRunning the MonitorThe StripchartsMain Action ButtonsThe Log DisplayThe Queue DisplayThe Queue MenuMaintaining Alias and Other DatafilesMaintaining DBM FilesHints Database MaintenanceMailbox Maintenance
PrerequisitesFetching and Unpacking the SourceConfiguration for BuildingThe Contents of Local/MakefileMandatory Makefile SettingsDriver Choices in the MakefileModule Choices in the MakefileRecommended Makefile SettingsA Plausible Minimal MakefileSystem-Related Makefile SettingsOptional Settings in the MakefileConfiguration for Building the Exim MonitorBuilding Exim for Multiple SystemsThe Building ProcessInstalling EximTesting Before Turning OnTurning Exim OnInstalling Documentation in Info FormatUpgrading to a New Release
Expansion ItemsExpansion ConditionsCombining ConditionsExpansion Variables
Testing Regular ExpressionsMetacharactersBackslashChanging Matching OptionsCircumflex and DollarDot (Period, Full Stop)Square BracketsPOSIX Character ClassesVertical BarSubpatternsRepetitionBack ReferencesAssertionsOnce-Only SubpatternsConditional SubpatternsCommentsRecursive PatternsPerformance

Overview

Exim delivers electronic mail, both local and remote. It has all the virtues of a good postman: it's easy to talk to, reliable, efficient, and eager to accommodate even the most complex special requests. It's the default mail transport agent installed on some Linux systems, runs on many versions of Unix, and is suitable for any TCP/IP network with any combination of hosts and end-user mail software.Exim is growing in popularity because it is open source, scalable, and rich in features such as the following:

Compatibility with the calling interfaces and options of Sendmail (for which Exim is usually a drop-in replacement)
Lookups in LDAP servers, MySQL and PostgreSQL databases, and NIS or NIS+ services
Support for many kinds of address parsing, including regular expressions that are compatible with Perl 5
Sophisticated error handling
Innumerable tuning parameters for improving performance and handling enormous volumes of mail

Best of all, Exim is easy to configure. You never have to deal with ruleset 3 or worry that a misplaced asterisk will cause an inadvertent mail bomb.While a basic configuration is easy to read and can be created quickly, Exim's syntax and behavior do get more subtle as you enter complicated areas like virtual hosting, filtering, and automatic replies. This book is a comprehensive survey that provides quick information for people in a hurry as well as thorough coverage of more advanced material.

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Start your free trial

What Employees Want Most in Uncertain Times

Practical Internet Server Configuration: Learn to Build a Fully Functional and Well-Secured Enterprise Class Internet Server

Robert La Lau

Publisher Resources

ISBN: 0596000987Errata Page

Exim: The Mail Transfer Agent

by Philip Hazel

Overview

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

You might also like

What Employees Want Most in Uncertain Times

qmail

How I Built a Personal Board of Directors With GenAI

Practical Internet Server Configuration: Learn to Build a Fully Functional and Well-Secured Enterprise Class Internet Server

Publisher Resources

Overview

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,and much more.

You might also like

What Employees Want Most in Uncertain Times

qmail

How I Built a Personal Board of Directors With GenAI

Practical Internet Server Configuration: Learn to Build a Fully Functional and Well-Secured Enterprise Class Internet Server

Publisher Resources

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.