Slightly OT: Postfix smtpd restrictions

Jason Ede J.Ede at birchenallhowden.co.uk
Fri Jun 25 10:06:47 IST 2010 

I was thinking of sticking with just the unknown_reverse_client_hostname rather than the stricter one. As far as I can gather from the docs only if the IP doesn't resolve to a hostname will the email be rejected.

Jason


From: mailscanner-bounces at lists.mailscanner.info [mailto:mailscanner-bounces at lists.mailscanner.info] On Behalf Of Drew Marshall
Sent: 25 June 2010 09:02
To: MailScanner discussion
Subject: Re: Slightly OT: Postfix smtpd restrictions


On 24 Jun 2010, at 12:57, Jason Ede wrote:


This is purely MTA based, but since a lot of users here run postfix...

How have others found reject_unknown_reverse_client_hostname and the more harsh reject_unknown_client_hostname  in postfix? I'm debating implementing them here and wonder if others have found them problematic or useful? I thinking they should be good for weeding out spam emails and I can't see that they should catch legitimate senders, but want to be sure

I have to be honest, I ran this for a short while in warn mode and found that the number of people with mis-configured PTR records is huge (In the UK). For example, BT won't let anyone change their PTR, so EHLO/ HELO is always going to be a mismatch for these. Most people running Exchange 'naked' to the Internet end up having a EHLO as <name>.local or some such other non existent TLD so that ends up not matching either and so it goes on.

As ever YMMV but for me, I found other ways to combat spam coming from these sorts of connections such as RBLs etc.

Drew

--
In line with our policy, this message has been scanned for viruses and dangerous content.
Our email policy can be found at www.trunknetworks.com/policy<http://www.trunknetworks.com/policy>

Trunk Networks Limited is registered in Scotland with registration number: SC351063
Registered Office 55-57 West High Street Inverurie AB51 3QQ
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.mailscanner.info/pipermail/mailscanner/attachments/20100625/15551ab5/attachment.html

More information about the MailScanner mailing list