Has anyone noticed (or is it just my server) that if you look at the mail headers for an outgoing or incoming email that it might contain the domain of another account? Let me give and example (email addresses removed)

Return-Path: <Correct return path>
Delivered-To: Proper Email Address with domain
Received: (qmail 5936 invoked from network); 7 Jan 2002 22:20:45 -0000
Received: from correct host
by seemingly random psa domain from server with SMTP; 7 Jan 2002 22:20:45 -0000
Received: from correct host)
by correct host with ESMTP id id
for <correct email with domain>; Mon, 7 Jan 2002 12:19:57 -0500 (EST)
Message-ID: <correct message id>
Date: Mon, 07 Jan 2002 12:22:39 -0800
X-Accept-Language: en
MIME-Version: 1.0
To: correct to address
Subject:


it's this bit that's intriguing



It doesn't exactly professional if you are trying to offer webhosting and they see another clients domain in their headers

I have the same problem, this is not a big thing but it's anoying...

You've mucked up the headers so much I'm having a hard time following them and you might have omitted some important information as well.

I assume that's an incoming message to your server.
Does the "seemingly random psa domain from server" stay constant, or change all the time?

Sorry because it wasn't an email from myself I was trying to mask the identity of the sender.

They are incoming emails to the server. Every incoming mail seems to pick up a random domain from the server (so one email will have one the next may have a different one altogether)

It should pick up the hostname of the server? As default that is plesk.rackshack.net unless you have changed it.

Is it picking up just full domain names to use or is it picking up sub-domains as well???

Let me explain further.

Lets say I am me@mydomain.com and also have two other domains called otherdomain1.com and otherdomain2.com on the server (under different clients).

If someone sends me an email the incoming server in the headers seems to have a one in three chance of being called mydomain.com (and no the hostname is still plesk.rackshack.net... although I want to change that) otherwise it picks up one of the others. I don't have any subdomains setup on the server so I can't answer that part of the question.

This also applies to out going emails too.

You're right Rich2k. I have this rather interesting problem too it seems. I sent email to myself from a couple of different domains on the server to an address off of the server. With the limited testing I did they were all showing the same completely unrelated sub.domain as part of the string of another on the server. Nothing random, just that every email has this other sub showing in the header info.

Anybody have any ideas on this one? If you think you might and want a copy of the actual header PM me and I'll send it along. Just don't wanna be posting that kinda stuff out here on the boards and have some email addy collector start spaming me on 2 addresses at once.

Squire

Just a thought:

for example: you changed the hostname of your server from plesk.rackshack.net to server.domain.com

Do you have server.domain.com set up as an actual account on your server...? Are you able to receive mail coming to admin@server.domain.com?

Ales

thats not the problem though... it's not picking up the wrong hostname it's putting other client's domain names in the email headers!

I understand, I'm just refering to the possibility that the email in general could be showing some odd behaviour because of it. Mine sure did before I got the hostname actually hosted on the server.

It's just a longshot, though.

Ales

My collegue has been playing with qmail and the current situation is that

An external email account to one on the server reports the correct headers.

An email from an account on the server to an external email account has incorrect headers (hostname is correct but picks up incorrect domains when resolving ips... or at least that's what it looks like it's doing).

Plesk support simply said: "This is normal situation. These is an addresses of SMTP servers what take part in mail delivery."

Loads of help that was.

ROFL Yeah, loads of help. I guess I should thank my lucky stars that it's just a personal domain and not some adult domain showing up in those email headers, hunh? Something tells me major corporate clients wouldn't care much for having a header reading "Recieved from: sex.com" in their sent emails.

Ales, I had those hostname issues too which reconfigurator.sh fixed part of but not all of. I ended up having to make some manual changes and I thought I sorted it all out. However this one is confounding so evidently there's something somewhere that I've missed.

Rich, just to compare notes, are all the the headers on various domains all showing the same erroneous header info? Mine is all showing the same Sub Domain (it's don.domain.com, which is just a sub for Don, a friend of mine...the site isn't even live yet and doesn't have it's own email addresses set up yet either.) Or is your mailer just picking another random domain on your server and inserting that info in the header?

This honestly hasn't been a pressing issue for me thus far, however it is a pain. And it's something I need to find a fix for just to head off future questions/concerns from clients. I'm going to try and find some free time today to search through the Qmail and Plesk sites and most likely the web in general. Hopefully one of us will eventually run across a fix, I can't believe we're the only ones who have ever run into this issue.

Squire

No in my case it's simply a random domain name that is virtually hosted under the same IP (or at least thats what it looks like) no subdomains at all (the host name in the headers is correct though).

The reason I'm concerned is the possiblity of client's domain names appearing in other client's emails!

I'm sure we are not the only people suffering this... probably just that many haven't bothered digging through the mail headers

Rich,

Yes, I'm sure people just haven't noticed it in the mail headers. I think it can be fixed, though... I have Plesk 2.0 on a RedHat 7.1 dedicated server at another location, and there are no problems with the headers on that server. It'll be at least a few days until I can investigate further, but I'll let you know if I find anything.

I too have this problem, headers in received email showing seemingly random "received from x by someRandomDomain.com.

Also, I`ve noticed that occasionally, it will show "plesk.rackshack.net" in there, which is strange, since I am certain that all reference to plesk.rackshack.net has been changed on my server.

Somewhat perplexing.

I`m wondering if anyone has been able to sort out this problem ?

My collegue sort of found an answer but not a true fix. It now displays the server name but additionally plesk.rackshack.net... don't ask me !

But at least it's not random other client domain names. I'll try to find out from him what he did.

Sounds good Rich. Thanks for checking back and following up. Maybe with your workaround we can put our heads together and figure out a solution, but a workaround will still work for me!

Mine issue is still different than yours. I don't get the "random" domain you and others are seeing, thank goodness. All sent mail shows the same faulty Received From info (This is not even a truly active domain nor does it have any email accounts set up for it). I'm hoping that our problems are related and that by coming at it from both directions at once we'll be able to sort out what's actually happening.

Squire

Hi,

If anyone could let me know what they did to work around this problem, I`d be very appreciative.

Thanks,

Matt

Sorry I haven't got the answer yet, I'll ask him to post it here

This is a quote from showthread.php?s=&threadid=10269

I don't know if it works because I'm still setting.

Has anyone got this to work?? I did the CNAME->A switch, but no dice. The only way I could kludge it was to manually edit the reverse zone file (to remove all but one domain), but that's no solution since PSA overwrites this file.

BTW, I administer a Plesk v1.3.1 server (not at Rackshack), where this problem doesn't occur. But I can't pinpoint why it happens on one but not on the other...

It works for me Hostcrest. Actually, part of that C&P above was from a post I made when I stumbled across it.

It seems like these mail issues are all DNS related, so you might want to look into that. Or even compare the DNS on your 1.3.1 server against what's on your RS 2.x server. Also, just in case you didn't do so when you made the "CNAME to A" record switch you'll want to restart PSA. Been awhile, but it seems that I didn't get the full effect until after I'd restarted Plesk from the command line.

A couple of good places to check your DNS to see how it stacks up:
www.dnsreport.com
www.dnsstuff.com

Or if you wanna post/PM what your current DNS reads like we can compare notes.

Squire

Thanks, Squire. I had restarted qmail and named after making those changes, but not psa...maybe that was it.

Anyway, I decided to get around it by removing the PTR record from the DNS template and from all the client domains... Since I'm using name-based hosting on one IP, it works fine.

ok... heres what i figured out on this...

run the host command from your server on your servers own ip.
# host 123.456.789

now.. if you get a whole bunch of domains resulting then likely the unwanted domains that you are seeing in your email headers are towards the top of that list.

curiously enough if you run this same command on a domain that is not local you get just the proper domain returned. AND if you run the same host command above from another linux machine (not your server) you get just one entry (the proper one) returned.

it seems that qmail is using the host command or else its obtaining its info in the same way this host command is when it inserts that domain into the header. All those domains are listed in the ptr entry in named's zone files (i.e. 12.34.567.in-addr-arpa file) but of course plesk will overwrite that so changing it is rather futile.

Easy solution is to edit /etc/resolv.conf so that "nameserver 127.0.0.1" is no longer at the top. In other words instead of having your server use itself as its primary DNS server have it use ns1.ev1.net or whatever... i just moved "nameserver 127.0.0.1" to the bottom of the list and now the above host command returns only one entry (the one i want in the headers)

no i dont understand why and i'm not entirely sure this is THE BEST solution but its seems the easiest and i cant see anything wrong with it besides the perhaps the extra few milliseconds wasted using a remote DNS server instead of yourself, but it seems to work and my headers are how i want them now.

i'm interested in everyones thoughts on the implications of fixing it this way.