我刚刚收到大量垃圾邮件,需要捕获所有邮箱。我查看了服务器日志,可以看到如下。我正在使用sendmail,中继已禁用,但不明白它们的含义。
Oct 1 12:26:40 bookingwidget sendmail[27713]: s91CQdhW027713: from=<>, size=48016, class=0, nrcpts=1, msgid=<[email protected]>, proto=ESMTP, daemon=MTA, relay=[204.17.255.34]
Oct 1 12:26:40 bookingwidget sendmail[27715]: s91CQdhW027713: to=<[email protected]>, delay=00:00:01, xdelay=00:00:00, mailer=local, pri=78214, dsn=2.0.0, stat=Sent
Oct 1 12:26:40 bookingwidget sendmail[27714]: s91CQdJY027714: from=<>, size=48012, class=0, nrcpts=1, msgid=<[email protected]>, proto=ESMTP, daemon=MTA, relay=[204.17.255.34]
Oct 1 12:26:40 bookingwidget sendmail[27717]: s91CQdJY027714: to=<[email protected]>, delay=00:00:01, xdelay=00:00:00, mailer=local, pri=78210, dsn=2.0.0, stat=Sent
Oct 1 12:26:42 bookingwidget sendmail[27719]: s91CQfSs027719: from=<>, size=50102, class=0, nrcpts=1, msgid=<[email protected]>, proto=ESMTP, daemon=MTA, relay=mail.oceanscientific.co.uk [217.45.154.122]
Oct 1 12:26:43 bookingwidget sendmail[27720]: s91CQfSs027719: to=<[email protected]>, delay=00:00:01, xdelay=00:00:01, mailer=local, pri=80324, dsn=2.0.0, stat=Sent
Oct 1 12:26:43 bookingwidget sendmail[27722]: s91CQhwv027722: from=<>, size=0, class=0, nrcpts=1, proto=SMTP, daemon=MTA, relay=mx13.mail.eu.clara.net [81.171.239.23]
Oct 1 12:26:44 bookingwidget sendmail[27723]: s91CQhpC027723: from=<>, size=3536, class=0, nrcpts=1, msgid=<[email protected]>, proto=ESMTP, daemon=MTA, relay=mr3.devon.gov.uk [159.15.129.83]
Oct 1 12:26:44 bookingwidget sendmail[27724]: s91CQhpC027723: to=<[email protected]>, delay=00:00:00, xdelay=00:00:00, mailer=local, pri=33740, dsn=2.0.0, stat=Sent
Oct 1 12:26:45 bookingwidget sendmail[27726]: s91CQjdC027726: from=<>, size=0, class=0, nrcpts=1, proto=SMTP, daemon=MTA, relay=smtpa.scotland.net [194.247.64.1]
Oct 1 12:26:45 bookingwidget sendmail[27727]: s91CQjWU027727: from=<>, size=6107, class=0, nrcpts=1, msgid=<[email protected]>, proto=ESMTP, daemon=MTA, relay=gateway.necgroup.co.uk [213.86.71.240]
Oct 1 12:26:45 bookingwidget sendmail[27728]: s91CQjWU027727: to=<[email protected]>, delay=00:00:00, xdelay=00:00:00, mailer=local, pri=36321, dsn=2.0.0, stat=Sent
Oct 1 12:26:46 bookingwidget sendmail[27730]: s91CQkvC027730: from=<>, size=705, class=0, nrcpts=1, msgid=<[email protected]>, proto=ESMTP, daemon=MTA, relay=chicken.scotland.net [194.247.64.31]
Oct 1 12:26:46 bookingwidget sendmail[27731]: s91CQkvC027730: to=<[email protected]>, delay=00:00:00, xdelay=00:00:00, mailer=local, pri=30915, dsn=2.0.0, stat=Sent
Oct 1 12:26:46 bookingwidget sendmail[27732]: s91CQkwh027732: from=<>, size=51603, class=0, nrcpts=1, msgid=<[email protected]>, proto=SMTP, daemon=MTA, relay=mx2.ipfin.co.uk [62.60.9.99]
Oct 1 12:26:46 bookingwidget sendmail[27734]: s91CQkwh027732: to=<[email protected]>, delay=00:00:00, xdelay=00:00:00, mailer=local, pri=81828, dsn=2.0.0, stat=Sent
Oct 1 12:26:46 bookingwidget sendmail[27736]: s91CQkn6027736: from=<>, size=53352, class=0, nrcpts=1, msgid=<a857ac64-9c4c-45b4-a413-769bcdd0cb5f@DBXPR05MB0607.eurprd05.prod.outlook.com>, proto=ESMTP, daemon=MTA, relay=mail-db3on0061.outbound.protection.outlook.com [157.55.234.61]
Oct 1 12:26:46 bookingwidget sendmail[27739]: s91CQkWi027739: from=<>, size=725, class=0, nrcpts=1, msgid=<[email protected]>, proto=ESMTP, daemon=MTA, relay=chicken.scotland.net [194.247.64.31]
Oct 1 12:26:46 bookingwidget sendmail[27740]: s91CQkWi027739: to=<[email protected]>, delay=00:00:00, xdelay=00:00:00, mailer=local, pri=30935, dsn=2.0.0, stat=Sent
Oct 1 12:26:46 bookingwidget sendmail[27742]: s91CQkBv027742: from=<>, size=3472, class=0, nrcpts=1, msgid=<c65e40d6746547f8a40cf374c935e8dd@AMXPR01MB007.eurprd01.prod.exchangelabs.com>, proto=ESMTP, daemon=MTA, relay=mail-db3on0058.outbound.protection.outlook.com [157.55.234.58]
答案1
这些消息是“退回邮件”。它们通常是由其他人向您的用户之一发送电子邮件引起的,当电子邮件无法送达时,邮件服务器将生成退回邮件。您可以通过常规邮件来区分它们,因为退回邮件始终包含信封发件人<>。
在这种情况下,原始邮件似乎具有信封发件人,因此您的邮件服务器正在尝试将有关失败邮件的信息传递到该地址。<[email protected]>
您将需要查看其中一条实际消息,以便找出原始消息是什么以及无法传递的原因。