|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Qualified Domain whitelisting
From: /dev/rob0 (rob0
gmx.co.uk)
Date: Wed Jun 29 2005 - 09:47:59 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
On Wednesday 29 June 2005 09:24, Greg Shikhman wrote:
> Hi, I am trying to enable helo checks for my mail gateway but I have
> to accept email from a system that doesn't have a fully qualified
> domain name. So far, to no avail, I have this configuration:
What does that mean, "doesn't have a fully qualified domain name"?
Meaning it uses a non-FQDN HELO string? What software (MTA or MUA) is
this? Can't you configure it to send a regular HELO?
> smtpd_delay_reject = yes
> smtpd_helo_required = yes
> smtpd_helo_restrictions =
> permit_mynetworks,
^
BTW you need leading whitespace to continue a logical line, see
postconf(5) for syntax details.
> check_helo_access hash:/etc/postfix/whitelist
> reject_non_fqdn_hostname,
> reject_invalid_hostname,
FWIW this is likely to reject a lot of real mail from misconfigured
mailers.
> check_sender_access hash:/etc/postfix/whitelist_sender
Whitelisting by sender address is reckless, likely to be abused.
Spambots can and will grab Windows users' address books and use your
whitelisted sender addresses.
> and in the whitelist and whitelist sender hashes, I have:
> apf50.arlingtonpress.com <http://apf50.arlingtonpress.com> OK
> apf50.arlingtonpress.com <http://apf50.arlingtonpress.com> OK
> [Do I need the ?]
Access table syntax is described in "man 5 access".
> What do I need to fix/change to get this to start working?
Read that and post back with questions.
--
mail to this address is discarded unless "/dev/rob0"
or "not-spam" is in Subject: header
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]