From: Aaron Williams (aaron.m.williamscomcast.net)
Date: Sat Feb 19 2005 - 13:50:28 CST

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

I am running Postfix version 2.0.6 along with Cyrus and am having a
problem. It seems that a spammer has been sending out massive amounts
of spam using my domain name in the from address, causing me to receive
hundreds of thousands of bounces. The problem I have is that the
spammer used random email addresses and my mail server bounces all of
them. I want to accept all email and for unknown recipients forward it
to a special account but it seems that no matter what I try it doesn't
work. I have followed LOCAL_RECIPIENT_README and set
local_recipient_maps =
and
luser_relay = forward_accountmydomain.tld

Any help would be greatly appreciated. The problem is I can't see any
of the bounces to track down the spammer.

-Aaron

# postconf -n
alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
command_directory = /usr/sbin
config_directory = /etc/postfix
daemon_directory = /usr/lib/postfix
debug_peer_level = 2
defer_transports =
disable_dns_lookups = no
disable_vrfy_command = yes
fallback_transport = cyrus
in_flow_delay = 2s
inet_interfaces = all
mail_owner = postfix
mail_spool_directory = /var/mail
mailbox_size_limit = 51200000
mailbox_transport = lmtp:unix:public/lmtp
mailq_path = /usr/bin/mailq
manpage_directory = /usr/share/man
masquerade_classes = envelope_sender, header_sender, header_recipient
masquerade_domains = doofus.org
masquerade_exceptions = root
message_size_limit = 10240000
mydestination = doofus.org, crinum.org, aaronw.com, aaronw.org
myhostname = mail.doofus.org
mynetworks = 192.168.0.0/24, 127.0.0.0/8
myorigin = $mydomain
newaliases_path = /usr/bin/newaliases
program_directory = /usr/lib/postfix
queue_directory = /var/spool/postfix
readme_directory = /usr/share/doc/packages/postfix/README_FILES
relay_clientcerts = hash:/etc/postfix/relay_ccerts
relayhost = smtp.comcast.net
relocated_maps = hash:/etc/postfix/relocated
sample_directory = /usr/share/doc/packages/postfix/samples
sender_canonical_maps = hash:/etc/postfix/sender_canonical
sendmail_path = /usr/sbin/sendmail
setgid_group = maildrop
smtp_sasl_auth_enable = yes
smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd
smtpd_client_restrictions = permit_sasl_authenticated,
permit_mynetworks, reject_rbl_client cbl.abuseat.org, reject_rbl_client
sbl-xbl.spamhaus.org, reject_rbl_client dul.maps.vix.com,
reject_rbl_client bl.spamcop.net, reject_rbl_client relays.orbs.org,
reject_rbl_client nigeria.blackholes.us, reject_rbl_client
cn-kr.blackholes.us, reject_rbl_client russia.blackholes.us,
reject_rbl_client dnsbl.njabl.org, reject_rbl_client
malaysia.blackholes.us, reject_rbl_client brazil.blackholes.us,
reject_rbl_client argentina.blackholes.us, reject_rbl_client
thailand.blackholes.us, reject_rbl_client relays.ordb.org,
reject_rbl_client list.dsbl.org
smtpd_error_sleep_time = 25s
smtpd_hard_error_limit = 20
smtpd_helo_required = yes
smtpd_helo_restrictions = permit_mynetworks, reject_invalid_hostname
smtpd_recipient_restrictions = permit_sasl_authenticated,
permit_tls_clientcerts, check_recipient_access
hash:/etc/postfix/filtered_domains, permit_mynetworks,
reject_unauth_destination, reject_unknown_recipient_domain
smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous
smtpd_soft_error_limit = 5
smtpd_tls_CAfile = /etc/postfix/ssl/cacert.pem
smtpd_tls_ask_ccert = yes
smtpd_tls_cert_file = /etc/postfix/ssl/newcert.pem
smtpd_tls_key_file = /etc/postfix/ssl/newreq.pem
smtpd_tls_loglevel = 2
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
smtpd_use_tls = yes
strict_rfc821_envelopes = no
tls_daemon_random_source = dev:/dev/urandom
tls_random_source = dev:/dev/urandom
transport_maps = hash:/etc/postfix/transport
unknown_local_recipient_reject_code = 550

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]