Blocking emails that claim to come from our domain
Erick Perez
eaperezh at GMAIL.COM
Wed Dec 7 20:57:47 GMT 2005
[ The following text is in the "ISO-8859-1" character set. ]
[ Your display is set for the "US-ASCII" character set. ]
[ Some characters may be displayed incorrectly. ]
it worked now.
reject invalids helo
but does not reject if the mail from: comes from a user at domain
example:
Dec 7 15:54:36 mail postfix/smtpd[23352]: 4F39275854F:
client=unknown[numericlinkwarning 200.46.223.90]
Dec 7 15:54:42 mail postfix/cleanup[23355]: 4F39275854F: hold: header
Received: from testing (unknown [numericlinkwarning 200.46.223.90])??by
mail.flyairpanama.com (mail.flyairpanama.com) with SMTP id
4F39275854F??for <eaperezh at flyairpanama.com>; Wed, 7 Dec 2005 15:54:26
-0500 (EST) from unknown[numericlinkwarning 200.46.223.90];
from=<eaperezh at flyairpanama.com> to=<eaperezh at flyairpanama.com>
proto=SMTP helo=<testing>
Dec 7 15:54:45 mail postfix/virtual[23364]: C600B75855E:
to=<eaperezh at flyairpanama.com>, relay=virtual, delay=19, status=sent
(delivered to mailbox)
this was a
helo testing
mail from: eaperezh at flyairpanama dot com
rcpt to: eaperezh at flyairpanama dot com
all being done from and untrusted network.
On 12/7/05, Glenn Steen <glenn.steen at gmail.com> wrote:
On 07/12/05, Erick Perez <eaperezh at gmail.com> wrote:
> isnt this supposed to work?
>
> smtpd_client_restrictions = permit_mynetworks,
check_client_access
> hash:/etc/postfix/mydomain_rules, warn_if_reject
> smtpd_helo_restrictions = permit_mynetworks,
check_client_access
> hash:/etc/postfix/mydomain_rules, warn_if_reject
>
> however in the logs:
>
> Dec 7 11:19:14 mail postfix/smtpd[15886]: 5A89575854F:
> client=fpacifico.com[numericlinkwarning 201.226.94.250]
> Dec 7 11:19:19 mail postfix/cleanup[15932]: 5A89575854F:
hold: header
> Received: from erick (fpacifico.com [numericlinkwarning
201.226.94.250])??by
> mail.flyairpanama.com ( mail.flyairpanama.com) with SMTP id
5A89575854F??for
> <eaperezh at flyairpanama.com>; Wed, 7 Dec 2005 11:19:04
-0500 (EST) from
> fpacifico.com[numericlinkwarning 201.226.94.250];
from=<eaperezh at flyairpanama.com>
> to=<eaperezh at flyairpanama.com> proto=SMTP helo=<erick>
> Dec 7 11:19:23 mail postfix/virtual[15909]: C157E758570:
> to=<eaperezh at flyairpanama.com>, relay=virtual, delay=19,
status=sent
> (delivered to mailbox)
>
> my mydomain_rules:
> flyairpanama.com REJECT Rejected. You are not me.
>
>
Hm, I suppose you'll be fine "baking them all together" like
that....
Don't know why you have double check_client_access entries
though....
Perhaps one was supposed to be a check_sender_access?
Amd you postmapped the file? And didn't use a trusted client
to test
(this need be from a host outside of $mynetworks)?
--
-- Glenn
email: glenn < dot > steen < at > gmail < dot > com
work: glenn < dot > steen < at > ap1 < dot > se
------------------------ MailScanner list
------------------------
To unsubscribe, email jiscmail at jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the Wiki (
http://wiki.mailscanner.info/) and
the archives
(http://www.jiscmail.ac.uk/lists/mailscanner.html).
Support MailScanner development - buy the book off the
website!
--
-------------------------------------------
Erick Perez
Linux User 376588
http://counter.li.org/ (Get counted!!!)
Panama, Republic of Panama
------------------------ MailScanner list ------------------------
To unsubscribe, email jiscmail at jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the Wiki (http://wiki.mailscanner.info/)
and the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html).
Support MailScanner development - buy the book off the website!
More information about the MailScanner
mailing list