OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: Jay Livens (jlivensmit.edu)
Date: Mon Jul 09 2001 - 08:38:53 CDT

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    Hi,
      Per Ralf's request is my postconf -n. Any thoughts would be appreciated.
    Thanks for your help.

    JL

    postconf -n

    alias_database = hash:/etc/postfix/aliases
    alias_maps = hash:/etc/postfix/aliases
    allow_percent_hack = no
    command_directory = /usr/sbin
    daemon_directory = /usr/libexec/postfix
    debug_peer_level = 2
    default_destination_concurrency_limit = 10
    default_privs = nobody
    default_transport = smtp
    inet_interfaces = all
    local_destination_concurrency_limit = 2
    mail_owner = postfix
    mailbox_command = /usr/bin/procmail
    maps_rbl_domains = rbl.maps.vix.com, dul.maps.vix.com
    mydestination = $myhostname, localhost.$mydomain, $mydomain
                    /etc/postfix/localdomains
    mydomain = livens.org
    myhostname = mail.livens.org
    mynetworks = 127.0.0.1/32 #, 66.92.78.13/32, 192.168.0.1/24
    myhostname = mail.livens.org
    mynetworks = 127.0.0.1/32 #, 66.92.78.13/32, 192.168.0.1/24
    myorigin = $mydomain
    program_directory = /usr/libexec/postfix
    queue_directory = /var/spool/postfix
    smtpd_recipient_restrictions = permit_mynetworks, permit_mx_backup,
                                    check_relay_domains,
                                    reject_unauth_destination,
                                    reject_unauth_pipelining,
                                    reject_unknown_sender_domain,
                                    reject_non_fqdn_recipient,
                                    reject_non_fqdn_senders,
                                    reject

    swap_bangpath = no
    virtual_maps = hash:/etc/postfix/virtusertable

    -----Original Message-----
    From: owner-postfix-userspostfix.org
    [mailto:owner-postfix-userspostfix.org]On Behalf Of Ralf Hildebrandt
    Sent: Monday, July 09, 2001 2:10 AM
    To: postfix-userspostfix.org
    Subject: Re: 2 Quick postfix questions

    <SNIP>

    > Second, I am trying to prevent unauthorized relaying. Currently the
    machine
    > is set up to only accept connections from itself (127.0.0.1) and my local
    > private IP address range (192.168.10.x). This works fine in all my tests
    > however, testing at mail-abuse.org provides the following error:
    >
    >
    >:Relay test: #Test 1
    >>>> mail from: <nobodymail-abuse.org>
    ><<< 250 Ok
    >>>> rcpt to: <nobodymail-abuse.org>
    ><<< 250 Ok
    >>>> QUIT
    ><<< 221 Bye
    > Tested host banner: 220 mail.xxx.org ESMTP Postfix
    > System appeared to accept 1 relay attempts

    Urgh. Show "postconf -n" output.

    > I am trying to figure out what is going on. The log does not seem to
    > indicate that postfix sent the emails; however, the fact that this fails
    is
    > troubling.

    The above tests never sends any emails. There's no DATA command issued.

    > smtpd_recipient_restrictions =
    > permit_mynetworks,
    > permit_mx_backup,

    > check_relay_domains,
    > reject_unauth_destination,
    The two together make little sense.

    > reject_unauth_pipelining,
    > reject_unknown_sender_domain,
    > reject_non_fqdn_recipient,
    > reject

    -
    To unsubscribe, send mail to majordomopostfix.org with content
    (not subject): unsubscribe postfix-users