NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Postfix Discussion> 2005-10

Re: A Question About "check_client_access"

From: Rich Shepard (rshepardappl-ecosys.com)
Date: Wed Oct 12 2005 - 15:29:55 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, 12 Oct 2005, Noel Jones wrote:

> Showing us that the IP is listed in your hash is of limited value; I don't
> doubt that it is. Very likely the mail is bypassing that map for some
> reason that only complete configuration information will show. If you need
> more help, be sure to include postconf -n output and log entries concerning
> the mail in question. Unaltered would be best.

Fair enough. Here's the message header (up to those added by SpamAssassin):

Return-Path: <virfmfetojoinme.com>
X-Original-To: rshepardappl-ecosys.com
Delivered-To: rshepardappl-ecosys.com
Received: by salmo.appl-ecosys.com (Postfix, from userid 1006)
     id 183C5DCE; Tue, 11 Oct 2005 14:56:21 -0700 (PDT)
Received: from 216.99.206.23 (unknown [61.84.170.21])
     by salmo.appl-ecosys.com (Postfix) with SMTP id B6FC8DCA
     for <rshepardappl-ecosys.com>; Tue, 11 Oct 2005 14:55:47 -0700 (PDT)
Received: (qmail 55453 invoked from network); Tue, 11 Oct 2005 17:56:15 -0400
Received: from mail.shults.com (HELO exchange-shults.com) (63.247.85.226)
   by server-99.celebrant-36.dunedin.com with SMTP; Wed, 12 Oct 2005 00:54:15
+0300
Received: by mail.shults.com with Internet Mail Service (5.5.WOPO.QM)
     id <HNJY43VS>; Wed, 12 Oct 2005 03:00:15 +0500
Subject: MAINTAIN your weight loss
To: <rshepardappl-ecosys.com>
Date: Tue, 11 Oct 2005 20:57:15 -0100
From: "Marylou Latham" <virfmfetojoinme.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7Bit
Message-Id: <20051011215547.B6FC8DCAsalmo.appl-ecosys.com>

And here's the entry from /var/log/maillog:

Oct 11 14:55:46 salmo postfix/smtpd[32521]: connect from unknown[61.84.170.21]
Oct 11 14:55:57 salmo postfix/smtpd[32521]: B6FC8DCA: client=unknown[61.84.170.21]
Oct 11 14:56:00 salmo postfix/smtpd[32521]: disconnect from unknown[61.84.170.21]

The output from 'postconf -n':

alias_database = hash:/etc/aliases
alias_maps = hash:/etc/postfix/aliases, hash:/etc/postfix/major-aliases
body_checks = regexp:/etc/postfix/body_checks
command_directory = /usr/sbin/
config_directory = /etc/postfix
daemon_directory = /usr/libexec/postfix
debug_peer_level = 2
default_privs = nobody
header_checks = regexp:/etc/postfix/header_checks
html_directory = no
inet_interfaces = all
local_recipient_maps = unix:passwd.byname $alias_maps
mail_owner = postfix
mail_spool_directory = /var/spool/mail
mailbox_command = /usr/bin/procmail
mailq_path = /usr/bin/mailq.postfix
manpage_directory = /usr/share/man
message_size_limit = 30720000
mydestination = $myhostname, mail.$mydomain, localhost.$mydomain, localhost.$mydomain, $mydomain, /etc/postfix/local/localdomains
mydomain = appl-ecosys.com
myhostname = salmo.appl-ecosys.com
mynetworks = 192.168.55.0/24, 127.0.0.0/8
mynetworks_style = subnet
myorigin = $mydomain
newaliases_path = /usr/bin/newaliases.postfix
queue_directory = /var/spool/postfix
readme_directory = /etc/postfix/README_FILES
sample_directory = /etc/postfix/samples
sendmail_path = /usr/sbin/sendmail.postfix
setgid_group = postdrop
smtpd_recipient_restrictions =
   check_client_access hash:/etc/postfix/internal_network
         check_sender_access hash:/etc/postfix/not_our_domain_as_sender
         reject_non_fqdn_recipient reject_non_fqdn_sender
         reject_unknown_sender_domain
         reject_unknown_recipient_domain
   permit_mynetworks
   reject_unauth_destination
         check_recipient_access hash:/etc/postfix/roleaccount_exceptions
   check_recipient_access hash:/etc/postfix/recipients
   check_helo_access pcre:/etc/postfix/helo_checks
         reject_non_fqdn_hostname
         reject_invalid_hostname
         check_sender_mx_access cidr:/etc/postfix/bogus_mx
         check_sender_access hash:/etc/postfix/rhsbl_sender_exceptions
   reject_rhsbl_sender dsn.rfc-ignorant.org
   reject_rbl_client sbl-xbl.spamhaus.org
   reject_rbl_client relays.ordb.org
   reject_rbl_client bl.spamcop.net
   reject_rbl_client list.dsbl.org
         check_sender_access hash:/etc/postfix/common_spam_senderdomains
   check_client_access hash:/etc/postfix/badip
   check_client_access hash:/etc/postfix/badaddr
   check_sender_access hash:/etc/postfix/badaddr
         permit
smtpd_restriction_classes = has_our_domain_as_sender
unknown_local_recipient_reject_code = 550

And, the entry from /etc/postfix/badip:

61.84 550 Rejected IP address.

I hope this helps.

Thanks,

Rich

Dr. Richard B. Shepard, President | Author of "Quantifying Environmental
Applied Ecosystem Services, Inc. (TM) | Impact Assessments Using Fuzzy Logic"
<http://www.appl-ecosys.com> Voice: 503-667-4517 Fax: 503-667-8863

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]