NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Postfix Discussion> 2007-10

SPF question as well as sender from my domain

From: Joey (JoeyWeb56.Net)
Date: Thu Oct 11 2007 - 12:31:25 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello All,

I first wanted to know how can an envelope sender who says they are from our
domain send a message to us, when we thought ( operative word ) we were
blocking that from happening?

Additionally we are using SPF and in this case SPF should have failed ( says
it did: does not designate 90.37.16.113 as permitted sender ) ,

it shows in the log file the following:

Oct 10 20:13:21 houston postfix/policy-spf[15368]: : SPF softfail:
smtp_comment=Please see
http://www.openspf.org/why.html?sender=rpqm%40innovativeinternet.com&ip=90.3
7.16.113&receiver=houston.innovativeinternet.net,
header_comment=houston.innovativeinternet.net: transitioning domain of
rpqminnovativeinternet.com does not designate 90.37.16.113 as permitted
sender

Oct 10 20:13:23 houston postfix/smtpd[15267]: NOQUEUE: filter: RCPT from
AMontpellier-158-1-25-113.w90-37.abo.wanadoo.fr[90.37.16.113]:
<jackinnovativeinternet.com>: Recipient address triggers FILTER
filter:dummy; from=<rpqminnovativeinternet.com>
to=<jackinnovativeinternet.com> proto=SMTP
helo=<AMontpellier-158-1-25-113.w90-37.abo.wanadoo.fr>

Oct 10 20:13:26 houston postfix/qmgr[27576]: 0DC882A0884:
from=<rpqminnovativeinternet.com>, size=3670, nrcpt=1 (queue active)

Oct 10 20:13:29 houston postfix/pickup[14903]: 0F9542A08CF: uid=10816
from=<rpqminnovativeinternet.com>

Oct 10 20:13:30 houston postfix/qmgr[27576]: 0F9542A08CF:
from=<rpqminnovativeinternet.com>, size=3798, nrcpt=1 (queue active)

THANKS!

postconf -n

alias_maps = hash:/etc/postfix/aliases

biff = no

body_checks = pcre:/etc/postfix/body_checks

body_checks_size_limit = 21200

bounce_queue_lifetime = 1d

bounce_size_limit = 2048

command_directory = /usr/sbin

config_directory = /etc/postfix

daemon_directory = /usr/libexec/postfix

debug_peer_level = 2

delay_warning_time = 24h

deliver_lock_attempts = 10

disable_vrfy_command = yes

header_checks = regexp:/etc/postfix/header_checks

html_directory = no

inet_interfaces = 207.44.168.240

mail_owner = postfix

mail_spool_directory = /var/spool/mail

mailbox_size_limit = 35000000

mailq_path = /usr/bin/mailq

manpage_directory = /usr/share/man

maximal_queue_lifetime = 5d

message_size_limit = 20000000

mydestination = $myhostname, localhost.$mydomain, $mydomain

myhostname = mail3.innovativeinternet.net

mynetworks = 127.0.0.0/8

myorigin = $mydomain

newaliases_path = /usr/bin/newaliases

queue_directory = /var/spool/postfix

readme_directory = /usr/share/doc/postfix-2.2.10/README_FILES

relay_domains = /etc/postfix/backup_domains

relay_recipient_maps = hash:/etc/postfix/backup_domains_recipients,
hash:/etc/postfix/transport_recipients

sample_directory = /usr/share/doc/postfix-2.2.10/samples

sendmail_path = /usr/sbin/sendmail

setgid_group = postdrop

show_user_unknown_table_name = no

smtpd_hard_error_limit = 3

smtpd_helo_required = yes

smtpd_junk_command_limit = 3

smtpd_recipient_restrictions = reject_invalid_hostname,
reject_non_fqdn_sender, reject_non_fqdn_recipient,
reject_unknown_sender_domain, reject_unknown_recipient_domain,
permit_mynetworks, reject_unauth_destination,
check_helo_access hash:/etc/postfix/helo_access,
reject_invalid_helo_hostname, reject_non_fqdn_helo_hostname,
check_policy_service unix:private/policy, check_sender_access
hash:/etc/postfix/client_checks, check_client_access
hash:/etc/postfix/client_checks, check_sender_access
hash:/etc/postfix/freemail_access, check_recipient_mx_access
hash:/etc/postfix/mx_access, check_sender_access
hash:/etc/postfix/senders reject_unauth_pipelining,
reject_rbl_client zen.spamhaus.org, reject_rbl_client
bl.spamcop.net, reject_rbl_client dul.dnsbl.sorbs.net,
reject_rbl_client list.dsbl.org, reject_rbl_client
combined.njabl.org, reject_rbl_client spamsources.fabel.dk,
reject_rbl_client dnsbl.ahbl.org, reject_rbl_client
virbl.dnsbl.bit.nl, check_recipient_access
hash:/etc/postfix/filtered_domains

smtpd_restriction_classes = from_freemail_host

soft_bounce = no

strict_rfc821_envelopes = yes

transport_maps = hash:/etc/postfix/transport

unknown_address_reject_code = 554

unknown_client_reject_code = 554

unknown_hostname_reject_code = 554

unknown_local_recipient_reject_code = 550

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]