|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
learning config
From: WC -Sx- Jones (root
insecurity.org)
Date: Tue Apr 01 2003 - 10:01:54 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
OK, please allow me to preface this under the category of "I know I should
understand something before I implement it ... however, how am I going to
understand if I don't practice?" :)
That said, I have found:
#smtpd_recipient_restrictions =
# reject_invalid_hostname,
# reject_non_fqdn_hostname,
# reject_non_fqdn_sender,
# reject_non_fqdn_recipient,
# reject_unknown_sender_domain,
# reject_unknown_recipient_domain,
# reject_unauth_pipelining,
# permit_mynetworks,
# reject_unauth_destination,
# check_recipient_access pcre:/etc/postfix/recipient_checks.pcre,
# check_sender_access dbm:/etc/postfix/sender_checks,
# check_client_access dbm:/etc/postfix/client_checks,
# check_client_access pcre:/etc/postfix/client_checks.pcre,
# reject_rhsbl_sender dsn.rfc-ignorant.org,
# reject_rbl_client relays.ordb.org,
# reject_rbl_client inputs.relays.osirusoft.com,
# reject_rbl_client dialups.relays.osirusoft.com,
# reject_rbl_client spamhaus.relays.osirusoft.com,
# reject_rbl_client proxies.relays.monkeys.com,
# reject_rbl_client opm.blitzed.org,
# permit
My tests show this works well, maybe too good. The main issue I see is that now
no one can send e-mail from myhost or mynetworks.
log entry:
Sender address rejected: need fully-qualified address ...
While I have screwed around with canonical, etc, nothing is working; Obviously I
am missing something basic -- may I get a hint?
Thank you;
-Bill- :]
_Sx____________________
('> iudicium ferat
//\ Have Computer -
v_/_ Will Hack...
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]