Exim

• Manual: http://www.exim.org/docs.html
• Testing Exim: https://github.com/Exim/exim/wiki/TestingExim
• Exim cheatsheet: http://bradthemad.org/tech/notes/exim_cheatsheet.php
• Exim cheatsheet2: https://knowledge-base1.readthedocs.io/en/latest/exim.html
• Exim cheatsheet3: http://www.datadisk.co.uk/html_docs/exim/exim_cs.htm
• Exim cheatsheet4: https://www.first2host.co.uk/exim-cheat-sheet-manage-exim/
• Exim cheatsheet5: https://nixcp.com/exim-cheatsheet/

About logs:

• https://www.exim.org/exim-html-current/doc/html/spec_html/ch-log_files.html
• https://www.liquidweb.com/kb/how-to-read-an-exim-maillog/

Exim check run time configuration:

# exim -bV

Exim check configuration values:

# exim -bP

OR

# grep -r 'PARAM' /etc/exim*

Search spammer by subject:

grep -o 'T=.*>' /var/log/exim/mainlog | sort | uniq -c | sort -n

Search who spam to hotmail, outlook, live.com:

#DirectAdmin
egrep 'hotmail|outlook|live.com' /var/log/exim/mainlog | grep 'Queued mail for delivery' | grep -o 'F=<[^>]*' | sort | uniq -c | sort -n
#cpanel / whm
egrep 'hotmail|outlook|live.com' /var/log/exim_mainlog | grep 'Queued mail for deliver' | grep -o '=>.* R'

Search who mostly send to remote servers:

grep 'T=remote_smtp' /var/log/exim/mainlog | grep -o 'F=<.*>' | sort | uniq -c | sort -n

Remove messages from queue by domain:

# exim -bp | awk /domain/{'print $3'} | xargs exim -Mrm

Remove all messages from queue:

# exim -bp | exiqgrep -i | xargs exim -Mrm

service exim stop; /usr/sbin/exim -bd -d+all

exim -be 'string'

eximstats /var/log/exim/mainlog | less

Install swaks (yum, apt, sources, etc…)

swaks --to receiver@remotedomain.tld \
   --from=test@domain.tld \
   --auth \
   --auth-user=test@domain.tld \
   --auth-password=no-way:P \
   --server mail.domain.tld

To router definition add:

local_part_suffix = +* : -* : _*
local_part_suffix_optional

More info: https://wiki.debian.org/Exim#Email_Sub-addressing_.28plus_signs_like_Gmail.29