Hello all,
I’ve enabled the Mail Rate Limiting option a few days ago, and several of my customers got blocked. The problem is they say they don’t send that many e-mails in one hour.
Is there a way to list all email messages (only sender, subject and recipient) that were sent from a domain within a time frame?
Or is there another way for me to prove to my customer that he really sent that many e-mails?
Thank you
Hi,
Try from the command line:
grep “from=email@address.com” /var/log/maillog
If you want to narrow to a specific date:
grep “from=email@address.com” /var/log/maillog | grep “Jul 30”
If you want to save the results to a file:
grep “from=email@address.com” /var/log/maillog | grep “Jul 30” > /directory/filename
Best Regards,
Peter Knowles
TPN Solutions
Email: pknowles@tpnsolutions.com
Phone: 604-229-0715 (new)
Skype: tpnsupport
Website: http://www.tpnsolutions.com
Hi Peter,
I’m using:
egrep -h "from=<[[:graph:]]+@domain.com.br>" /var/log/maillog > /tmp/maillog_domain.txtto get all emails from the domain… but I don’t think that will be enough. One of my clients was blocked, and he had sent only 34 messages today. My limit is 300 messages / hour.
I believe the problem is the number of recipients per message. Each recipient shows on a different line on the log…
I must have a way to show the customer the messages that were sent. This may even help to identify when viruses are the vilan.
Thanks
The mail rate limiting milter should record all triplets (sender IP, sender address, recipient address) it sees for reception or delivery, no matter if they were sent in one connection or multiple. You could filter the mail.log by these.
The mail.log will not contain subject lines though. You only find those in the procmail log, and only for incoming messages (outgoing ones aren’t piped through procmail).
Thanks Locutus, I’ll try that.