I’ve enabled the Mail Rate Limiting option a few days ago, and several of my customers got blocked. The problem is they say they don’t send that many e-mails in one hour.
Is there a way to list all email messages (only sender, subject and recipient) that were sent from a domain within a time frame?
Or is there another way for me to prove to my customer that he really sent that many e-mails?
Try from the command line:
grep “firstname.lastname@example.org” /var/log/maillog
If you want to narrow to a specific date:
grep “email@example.com” /var/log/maillog | grep “Jul 30”
If you want to save the results to a file:
grep “firstname.lastname@example.org” /var/log/maillog | grep “Jul 30” > /directory/filename
Phone: 604-229-0715 (new)
egrep -h "from=<[[:graph:]]+@domain.com.br>" /var/log/maillog > /tmp/maillog_domain.txt
to get all emails from the domain… but I don’t think that will be enough. One of my clients was blocked, and he had sent only 34 messages today. My limit is 300 messages / hour.
I believe the problem is the number of recipients per message. Each recipient shows on a different line on the log…
I must have a way to show the customer the messages that were sent. This may even help to identify when viruses are the vilan.
The mail rate limiting milter should record all triplets (sender IP, sender address, recipient address) it sees for reception or delivery, no matter if they were sent in one connection or multiple. You could filter the mail.log by these.
The mail.log will not contain subject lines though. You only find those in the procmail log, and only for incoming messages (outgoing ones aren’t piped through procmail).
Thanks Locutus, I’ll try that.