|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Question about open relay
From: Jason Williams (jwilliams
courtesymortgage.com)
Date: Mon Oct 06 2003 - 12:02:36 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Thanks for your help Viktor.
Would the next step by to go to http://ordb.org and use some of the mail
relay tests to verify that my mail gateway is indeed, not a open relay?
Any recommendations on where to test?
Lastly, any further recommendations, if any, on how to further secure my
mail gatway?
Thank you.
Jason
At 08:20 PM 10/1/2003 -0400, you wrote:
>On Wed, 1 Oct 2003, Jason Williams wrote:
>
> > mynetworks = 192.168.0.0/24, 127.0.0.0/8
> > smtpd_recipient_restrictions =
> > permit_mynetworks,
> > reject_unauth_destination,
>
>Excellent you now have a closed relay.
>
> > reject_invalid_hostname,
> > reject_non_fqdn_sender,
> > reject_unknown_sender_domain,
> > reject_unauth_pipelining,
> > check_recipient_access hash:/etc/postfix/maps/access,
> > reject_rbl_client relays.ordb.org,
> > reject_rbl_client list.dsbl.org,
> > reject_rbl_client sbl.spamhaus.org,
> > permit
>
>And all other restrictions are applied after ensuring you are not
>allowing unauthorized relaying. That's all there is to it.
>
>--
> Viktor.
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]