On Wed, 1 May 2002, Vivek Khera wrote:

> Executive summary:
>
> Appending myorigin to SMTP sender address in logs threw me off the
> trail of how to block an apparent mailbomb attack.
>

You can get the original (pre-cleanup) envelope and helo information into
your logs if you are willing to do bloat your logs a little (on my system
today 36MB out of 182MB of log data is due to the trick below):

        smtpd_helo_restrictions = warn_if_reject reject

This logs the helo name, client, envelope sender and envelope recipient as
a reject_warning. It would be cleaner to create a "log_envelope"
restriction that always returns DUNNO but writes a less misleading log
message with the same data, the overhead would also be smaller without the
extra baggage from reject_warning.

-- 
	Viktor.
-
To unsubscribe, send mail to majordomopostfix.org with content
(not subject): unsubscribe postfix-users

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]