OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: Relay behaviour
From: Cristian Prevedello (plasmaprosa.it)
Date: Thu Nov 02 2000 - 07:14:26 CST

Greetings,

I've a mail server with the following configuration.

alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
command_directory = /usr/sbin
daemon_directory = /usr/lib/postfix
debug_peer_level = 2
default_destination_concurrency_limit = 10
inet_interfaces = localhost , $myhostname
local_destination_concurrency_limit = 2
mail_owner = postfix
mydestination = $myhostname, localhost.$mydomain,
regexp:/etc/postfix/mydomain.regexp
myhostname = penney.prosa.it
myorigin = penney.prosa.it
queue_directory = /var/spool/postfix
relay_domains =
transport_maps = hash:/etc/postfix/transport
mynetworks = 127.0.0.0/8 213.255.48.128/29

(as a side note mynetwork default value isn't guessed correctly:
213.255.48.0/24)

As you can see relay_domains is empty.

So i should only relay for 213.255.48.128/29 hosts. But it also accepts to
relay from clients with different ip addresses (10.x.x.x) whose reverse
domain is a sub domain of $mydomain.

Is this supposed to work this way?
Anyway i think that it should be documented if this is the correct behaviour.

Any mailbombs should be sent to samaprosa.it since he asked about this
problem. :)

regards 

-- 
Cristian Prevedello, System Administrator at Prosa Labs
+39.049.804.3.411 tel, +39.049.803.6.484 fax
plasmaprosa.it, http://www.prosa.it/
Italians do it better