|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: learning config
From: Ralf Hildebrandt (Ralf.Hildebrandt
charite.de)
Date: Tue Apr 01 2003 - 10:20:02 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
* WC -Sx- Jones <rootinsecurity.org>:
> #smtpd_recipient_restrictions =
> # reject_invalid_hostname,
> # reject_non_fqdn_hostname,
> # reject_non_fqdn_sender,
> # reject_non_fqdn_recipient,
> # reject_unknown_sender_domain,
> # reject_unknown_recipient_domain,
> # reject_unauth_pipelining,
> # permit_mynetworks,
> # reject_unauth_destination,
> # check_recipient_access pcre:/etc/postfix/recipient_checks.pcre,
> # check_sender_access dbm:/etc/postfix/sender_checks,
> # check_client_access dbm:/etc/postfix/client_checks,
> # check_client_access pcre:/etc/postfix/client_checks.pcre,
> # reject_rhsbl_sender dsn.rfc-ignorant.org,
> # reject_rbl_client relays.ordb.org,
> # reject_rbl_client inputs.relays.osirusoft.com,
> # reject_rbl_client dialups.relays.osirusoft.com,
> # reject_rbl_client spamhaus.relays.osirusoft.com,
> # reject_rbl_client proxies.relays.monkeys.com,
> # reject_rbl_client opm.blitzed.org,
> # permit
>
>
> log entry:
> Sender address rejected: need fully-qualified address ...
These block non FQDN stuff
reject_non_fqdn_hostname,
reject_non_fqdn_sender,
reject_non_fqdn_recipient,
since they come before permit_mynetworks, they trigger first.
In your case reject_non_fqdn_sender
> While I have screwed around with canonical, etc, nothing is working;
> Obviously I am missing something basic -- may I get a hint?
Why don't you simply send out mail with FQDN senders?
--
Ralf Hildebrandt Ralf.Hildebrandtcharite.de
my current spamtrap partmaps040102charite.de
http://www.arschkrebs.de/postfix/ Tel. +49 (0)30-450 570-155
"The report of my death was an exaggeration."
-Mark Twain, After reading his own obituary, June 2, 1897
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]