alex at rtpty.com
Mon Nov 30 02:54:33 GMT 2009
It's not a completely open relay. It *is* postfix, which is a bit difficult to set up the wrong way but you may have succeeded in doing so.
It looks like you've added an "allow anyone from my internal network to relay through me without any checking whatsoever".
You need to take that out so that only authenticated users can do that.
And you *do* need to go into every machine's MUA and enable authentication - which you should have done in the first place.
Also you need to set up proper port 25 filtering in your firewall so that noone can go out using port 25 without going through your server first - and thus having to authenticate.
On Nov 29, 2009, at 9:11 PM, Jose Nathaniel Nengasca wrote:
> Is there any solution (aside from formatting 1000 windows workstations) that can stop worms from using my mail server? It is sending email using ambiguous email addresses likemailto:alsdfjasdfj at mydomain.com alsdfjasdfj at mydomain.com
> to AOL email servers. Can Mailscanner check the /etc/passwd to check if the user does exist before sending out email to the internet?
> Thank you very much.
> Jose Nathaniel G. Nengasca
More information about the MailScanner