|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Stopping Spam/Virus using fake address' inside local network
From: D. Walsh (info
daleenterprise.com)
Date: Wed Jun 01 2005 - 16:09:51 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
I've tried what you are attempting and while it can work for a
handfull of users, it is impossible to manage with 1000 + users.
The real problem is with what you are attempting to do in that you
must have all of the users IP's that they would be sending mail from
(work home friends ect...) already entered into your hash table and
this is unrealistic.
The logical solution is to enable smtp auth and use a mail client
that supports this or use squirrel mail from your server.
On Jun 01, 2005, at 04:42 PM, merighteousjester.co.za wrote:
> Ta
>
> I have tired that already with the following setup.
>
> smtpd_sender_restrictions = check_client_access hash:/etc/postfix/
> clients
This is what I have used in the past that does work but with lots of
users this table gets large, of course you can sort the table by IP
to assist in managment.
smtpd_sender_restrictions = check_client_access mysql:/etc/postfix/
clients.cf
/etc/postfix/client.cf:
user = postfix
password = postfix
hosts = localhost
dbname = postfixclients
table = clients
select_field = client
where_field = client
additional_conditions = and enabled = '1'
Store the IP in the 'client' field and set enabled to '1' to allow use.
This returns true if they are in the list and enabled, false if they
are not or are not enabled.
I've also used (which is basically the same thing but using domain
names instead of IP's)
/etc/postfix/relay_domain_maps.cf:
user = postfix
password = postfix
hosts = localhost
dbname = postfix
table = domain
select_field = domain
where_field = domain
additional_conditions = and backupmx = '1'
This method checks the domain name but is much easier to use as an
open relay (something to avoid).
> check_relay_domains,
> permit_mynetworks (with and without)
>
> But I can't seem to get it to gel.
>
> I would love it if someone could give me the right syntax or show
> me where
> I am screwing up.
>
>
>
>
>> Righteous Jester schrieb:
>>
>>> Howdy Everybody.
>>>
>>> I want to allow clients to relay through my box, but base the allow
>>> rules on IP address and domain names.
>>>
>>> Here is the situation. We currenlty have about a 100 IP that are
>>> allowed to relay through our box which works wonderfully.
>>>
>>> The problem is, when one of these guys gets a virus, it sends out
>>> hundreds of emails with a fake sender address e.g.
>>> moocowyahoo.com to
>>> random address e.g. foobarhotmail.com which we kindly deliver
>>> for them
>>> because their IP address is in $my_networks.
>>>
>>> I want to be able to allow these guys to relay through us using
>>> there IP
>>> but the same time say that the senders domain must be in this list
>>> "/etc/postfix/clients" - if it isn't then the recpient must be
>>> either a
>>> local destination or a relay_domain. So if the senders domain is
>>> not in
>>> the list and there recipient is not a local user or relay_domain
>>> - then
>>> it must be denied.
>>>
>>
>> Look at the manual for smtpd_sender_restrictions
>>
>>
>>> So can someone throw me a freakin bone here?
>>>
>>
>> HTH
>>
>> Best regards Jan
>>
>> --
>> OpenPGP Public-Key Fingerprint:
>> 0E9B 4052 C661 5018 93C3 4E46 651A 7A28 4028 FF7A
>>
>>
>
>
>
>
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]