Rob MacGregor wrote:
A run of "fetchmail -v -v" should help identify what fetchmail thinks
(and, once you've stripped out passwords/usernames should help us
too).
Well, it wasn't the header-line wrapping that I thought it was, but
fetchmail being far too finickety as usual!
Still can't see how to fix it, so here's the header of a message bcc'ed
to mike(_dot_)yates(_at_)hatton(_dot_)co(_dot_)uk and dumped into postmaster's box by fetchmail:-
From mike-yates(_at_)blueyonder(_dot_)co(_dot_)uk Sun Dec 5 20:57:25 2004
Return-Path: <mike-yates(_at_)blueyonder(_dot_)co(_dot_)uk>
Received: from localhost (localhost.localdomain [127.0.0.1])
by webserver.hatton.local (8.12.8/8.12.8) with ESMTP id iB5KvP4D018041
for <postmaster(_at_)localhost>; Sun, 5 Dec 2004 20:57:25 GMT
Received: from 217.28.130.67
by localhost with POP3 (fetchmail-6.2.0)
for postmaster(_at_)localhost (multi-drop); Sun, 05 Dec 2004 20:57:25
+0000 (GMT)
Received: from smtp-out2.blueyonder.co.uk (unverified [195.188.213.5]) by
thmailsite4.services.byworkwise.com
(Rockliffe SMTPRA 5.3.6) with ESMTP id
<B0024249355(_at_)thmailsite4(_dot_)services(_dot_)byworkwise(_dot_)com> for
<mike(_dot_)yates(_at_)hatton(_dot_)co(_dot_)uk>;
Sun, 5 Dec 2004 20:53:31 +0000
Received: from [192.168.1.100] ([82.33.72.66]) by smtp-out2.blueyonder.co.uk
with Microsoft SMTPSVC(5.0.2195.6713);
Sun, 5 Dec 2004 20:57:46 +0000
Message-ID: <41B3762E(_dot_)4050100(_at_)blueyonder(_dot_)co(_dot_)uk>
Date: Sun, 05 Dec 2004 20:57:18 +0000
From: Mike Yates <mike-yates(_at_)blueyonder(_dot_)co(_dot_)uk>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8a5)
Gecko/20041018
X-Accept-Language: en-us, en, ko, en-gb
MIME-Version: 1.0
To: undisclosed-recipients:;
Subject: test bcc'd to mike.yates
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-OriginalArrivalTime: 05 Dec 2004 20:57:46.0317 (UTC)
FILETIME=[12695FD0:01C4DB0D]
X-Fetchmail-Warning: no recipient addresses matched declared local names
-
Then here's the "fetchmail -v -v" output:-
fetchmail: 6.2.0 querying hatton.co.uk (protocol POP3) at Sun 05 Dec 2004
08:57:21 PM GMT: poll started
fetchmail: POP3< +OK MailSite POP3 Server 5.3.6.0 Ready
<47204368(_dot_)1102280017(_dot_)679(_at_)thmailsite4(_dot_)services(_dot_)byworkwise(_dot_)com>
fetchmail: POP3> CAPA
fetchmail: POP3< +OK Capability list follows
fetchmail: POP3< TOP
fetchmail: POP3< USER
fetchmail: POP3< UIDL
fetchmail: POP3< SASL SCRAM-MD5 CRAM-MD5
fetchmail: POP3< .
fetchmail: POP3> AUTH CRAM-MD5
fetchmail: POP3< +
PDI2NTAwLjEwNDEyMDUyMDUzMzdAdGhtYWlsc2l0ZTUuc2VydmljZXMuYnl3b3Jrd2lzZS5jb20+
fetchmail: decoded as
<26500(_dot_)1041205205337(_at_)thmailsite5(_dot_)services(_dot_)byworkwise(_dot_)com>
fetchmail: POP3>
Y2F0Y2hhbGxAaGF0dG9uLmNvLnVrIDlhZGE1MGJhNzk0NmZhNjQ1M2M0ZGE3NzY4NDZlNGIw
fetchmail: POP3< +OK catchall's mailbox has 1 message(s) (1090 octets)
fetchmail: selecting or re-polling default folder
fetchmail: POP3> STAT
fetchmail: POP3< +OK 1 1090
1 message for catchall(_at_)hatton(_dot_)co(_dot_)uk at 217.28.130.67 (1090
octets).
fetchmail: POP3> LIST
fetchmail: POP3< +OK 1 messages (1090 octets)
fetchmail: POP3< 1 1090
fetchmail: POP3< .
fetchmail: POP3> RETR 1
fetchmail: POP3< +OK 1090 octets
reading message catchall(_at_)hatton(_dot_)co(_dot_)uk@217.28.130.67:1 of 1
(1090 octets)
About to rewrite Return-path: <mike-yates(_at_)blueyonder(_dot_)co(_dot_)uk>
Rewritten version is Return-path: <mike-yates(_at_)blueyonder(_dot_)co(_dot_)uk>
fetchmail: analyzing Received line:
Received: from smtp-out2.blueyonder.co.uk (unverified [195.188.213.5]) by
thmailsite4.services.byworkwise.com
(Rockliffe SMTPRA 5.3.6) with ESMTP id
<B0024249355(_at_)thmailsite4(_dot_)services(_dot_)byworkwise(_dot_)com> for
<mike(_dot_)yates(_at_)hatton(_dot_)co(_dot_)uk>;
Sun, 5 Dec 2004 20:53:31 +0000
fetchmail: line rejected, thmailsite4.services.byworkwise.com is not an alias
of the mailserver
fetchmail: analyzing Received line:
Received: from [192.168.1.100] ([82.33.72.66]) by smtp-out2.blueyonder.co.uk
with Microsoft SMTPSVC(5.0.2195.6713);
Sun, 5 Dec 2004 20:57:46 +0000
fetchmail: line rejected, smtp-out2.blueyonder.co.uk is not an alias of the
mailserver
About to rewrite From: Mike Yates <mike-yates(_at_)blueyonder(_dot_)co(_dot_)uk>
Rewritten version is From: Mike Yates
<mike-yates(_at_)blueyonder(_dot_)co(_dot_)uk>
About to rewrite To: undisclosed-recipients:;
Rewritten version is To: undisclosed-recipients:;
About to rewrite Return-Path: mike-yates(_at_)blueyonder(_dot_)co(_dot_)uk
Rewritten version is Return-Path: mike-yates(_at_)blueyonder(_dot_)co(_dot_)uk
fetchmail: no local matches, forwarding to postmaster
fetchmail: SMTP< 220 webserver.hatton.local ESMTP Sendmail 8.12.8/8.12.8; Sun,
5 Dec 2004 20:57:25 GMT
fetchmail: SMTP> EHLO localhost
fetchmail: SMTP< 250-webserver.hatton.local Hello localhost.localdomain
[127.0.0.1], pleased to meet you
fetchmail: SMTP< 250-ENHANCEDSTATUSCODES
fetchmail: SMTP< 250-PIPELINING
fetchmail: SMTP< 250-8BITMIME
fetchmail: SMTP< 250-SIZE
fetchmail: SMTP< 250-DSN
fetchmail: SMTP< 250-ETRN
fetchmail: SMTP< 250-DELIVERBY
fetchmail: SMTP< 250 HELP
fetchmail: forwarding to localhost
fetchmail: SMTP> MAIL FROM:<mike-yates(_at_)blueyonder(_dot_)co(_dot_)uk>
BODY=7BIT SIZE=1090
fetchmail: SMTP< 250 2.1.0 <mike-yates(_at_)blueyonder(_dot_)co(_dot_)uk>...
Sender ok
fetchmail: SMTP> RCPT TO:<postmaster(_at_)localhost>
fetchmail: SMTP< 250 2.1.5 <postmaster(_at_)localhost>... Recipient ok
fetchmail: SMTP> DATA
fetchmail: SMTP< 354 Enter mail, end with "." on a line by itself
fetchmail: message catchall(_at_)hatton(_dot_)co(_dot_)uk@217.28.130.67:1 was
not the expected length (1087 actual != 1090 expected)
fetchmail: SMTP>. (EOM)
fetchmail: SMTP< 250 2.0.0 iB5KvP4D018041 Message accepted for delivery
flushed
fetchmail: POP3> DELE 1
fetchmail: POP3< +OK message 1 deleted
fetchmail: POP3> QUIT
fetchmail: POP3< +OK thmailsite5.services.byworkwise.com POP3 server signing
off (mailbox empty)
fetchmail: 6.2.0 querying hatton.co.uk (protocol POP3) at Sun 05 Dec 2004
08:57:25 PM GMT: poll completed
fetchmail: not swapping UID lists, no UIDs seen this query
fetchmail: SMTP> QUIT
fetchmail: SMTP< 221 2.0.0 webserver.hatton.local closing connection
fetchmail: Deleting fetchids file.
fetchmail: normal termination, status 0
fetchmail: Deleting fetchids file.
and here's the .fetchmailrc (with password changed)
note two lines tried to no avail:-
poll hatton.co.uk
proto pop3
via mail.hatton.co.uk
localdomains hatton.co.uk no dns
# envelope Received
user "catchall(_at_)hatton(_dot_)co(_dot_)uk"
pass "xxxxxxxx"
is *
fetchall
# stripcr
no ssl
rewrite
Now fetchmail is complaining that "thmailsite4.services.byworkwise.com
is not an alias of the mailserver" but why should it be?
mail.hatton.co.uk = 217.28.130.67
thmailsite4.services.byworkwise.com = 217.28.130.98
Any of the mailsite servers may have received the message.
Note above that fetchmail was talking to thmailsite5.services.byworkwise.com
so why should it expect an "alias" of that?
By the way, each time I look in Hatton's mailbox, there are dozens (67
today) of messages stuck there because fetchmail wouldn't get them. They
are all virus-emails from "Sober.J" infected PCs (which Evolution
collected and deleted OK by POP3 for me to inspect and destroy).
Here's the header of a typical one (note the fairly clever header
forgery, social engineering and false virus check report!):-
Return-path: <chrisreah(_at_)hotmail(_dot_)com>
Received: from thsmtpb1.byworkwise.com (unverified [213.166.14.11]) by
thmailsite4.services.byworkwise.com (Rockliffe SMTPRA 5.3.6) with ESMTP
id
<B0019447544(_at_)thmailsite5(_dot_)services(_dot_)byworkwise(_dot_)com>; Sun,
5 Dec 2004 13:42:07
+0000
Received: from emnplxm.com (host81-130-233-98.in-addr.btopenworld.com
[81.130.233.98]) by byworkwise.com (Rockliffe SMTPRA 5.3.6) with SMTP id
<B0012064866(_at_)thsmtpb1(_dot_)byworkwise(_dot_)com>; Sun, 5 Dec 2004
13:42:25 +0000
From: chrisreah(_at_)hotmail(_dot_)com
To: userX(_at_)hatton(_dot_)co(_dot_)uk
Date: Sun, 05 Dec 2004 13:41:40 GMT
Subject: Oh God it's
Importance: Normal
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
Message-ID: <fd93c78aa8e6af8d65ba(_at_)hotmail(_dot_)com>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="=3edc51c0bd01.954a027fb964"
Content-Transfer-Encoding: 7bit
X-Evolution-Source:
pop://Catchall%40hatton(_dot_)co(_dot_)uk(_at_)217(_dot_)28(_dot_)130(_dot_)67/
--=3edc51c0bd01.954a027fb964
I was surprised, too!
Who_could_suspect_something_like_that? shityiiiii
*-*-* Attachment: No Virus found
*-*-* HATTON.CO- Anti_Virus Service
*-*-* http://www.hatton.co.uk
--=3edc51c0bd01.954a027fb964
Content-Type: application/octet-stream; name=oh_nono2743.txt.zip
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="oh_nono2743.txt.zip"
And here's why "fetchmail -v -v" said it was rejected:-
fetchmail: POP3> RETR 4
fetchmail: POP3< +OK 79436 octets
reading message catchall(_at_)hatton(_dot_)co(_dot_)uk@217.28.130.67:4 of 69
(79436 octets)
About to rewrite Return-path: <chrisreah(_at_)hotmail(_dot_)com>
Rewritten version is Return-path: <chrisreah(_at_)hotmail(_dot_)com>
About to rewrite From: chrisreah(_at_)hotmail(_dot_)com
Rewritten version is From: chrisreah(_at_)hotmail(_dot_)com
About to rewrite To: userX(_at_)hatton(_dot_)co(_dot_)uk
Rewritten version is To: userX(_at_)hatton(_dot_)co(_dot_)uk
fetchmail: incorrect header line found while scanning headers
fetchmail: message catchall(_at_)hatton(_dot_)co(_dot_)uk@217.28.130.67:4 was
not the expected length (79433 actual != 79436 expected)
fetchmail: retained
OK, it was 3 bytes short.
Is that usual with virus emails?
Could be useful that fetchmail retains them but a damn nuisance to use
up mailbox quota!
BTW domestic Blueyonder do free virus scanning of all email while
Workwise charge extra for it :-(
--
Have fun,
Mike
--
http://fonehelp.co.uk - PC support, no fix, no fee!