NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Postfix Discussion> 2007-02

RE: Looking to bypass blackhole lists for certain users

From: Noel Jones (njonesmegan.vbhcs.org)
Date: Thu Feb 01 2007 - 14:03:33 CST

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

At 01:44 PM 2/1/2007, Curt LeCaptain wrote:
>Postconf -n output:

No glaring errors, couple little things.

>relay_domains = $mydestination

If you don't relay for subdomains of $mydestination, you should set
relay_domains =
ie. empty value. If you do have subdomains of $mydestination, you
should populate relay_recipient_maps with a list of valid recipient names.

>smtpd_recipient_restrictions = permit_mynetworks
>permit_sasl_authenticated check_client_access
>hash:/etc/postfix/pop-before-smtp reject_unauth_destination
>check_sender_access hash:/etc/postfix/spamfriends
>reject_non_fqdn_hostname reject_non_fqdn_sender
>reject_non_fqdn_recipient reject_unknown_sender_domain
>check_sender_access hash:/etc/postfix/spamfriends reject_rbl_client
>combined.njabl.org reject_rbl_client bl.spamcop.net
>reject_rbl_client list.dsbl.org reject_rbl_client zen.spamhaus.org
>permit

You have your spamfriends listed twice, remove the second occurrence.

>smtpd_use_tls = no

If you are using SASL, it's common to also use TLS to protect
plain-text passwords from being sniffed.

>Log Entry:
>Feb 1 13:37:36 admin postfix/smtpd[24392]: connect from
>CPE-ip-add-re-ss.new.res.rr.com[ip.add.re.ss]
>Feb 1 13:37:48 admin postfix/smtpd[24392]: NOQUEUE: reject: RCPT from
>CPE-ip-add-re-ss.new.res.rr.com[ip.add.re.ss]: 554
> Service unavailable; Client host [ip.add.re.ss] blocked using
>combined.njabl.org; Dynamic/Residential IP range listed by N
>JABL dynablock - http://njabl.org/dynablock.html;
>from=<curtlecaptain.org> to=<nfelditol.com> proto=SMTP helo=<itol.com>
>Feb 1 13:37:51 admin postfix/smtpd[24392]: disconnect from
>CPE-ip-add-re-ss.new.res.rr.com[ip.add.re.ss]

Is this you from home trying to send mail to the local system?
Test your spamfriends map with postmap:
# postmap -q curtlecaptain.org hash:spamfriends
should return "OK". Make sure you "postfix reload" after making
changes to main.cf.

--
Noel Jones

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]