Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
From: Charles Marcus (CMarcusMedia-Brokers.com)
Date: Fri Apr 18 2008 - 14:38:53 CDT
On 4/18/2008 11:18 AM, Carlos Williams wrote:
> I am getting some emails from [22.214.171.124] so I decided to create
> /etc/postfix/client_blacklist with a single entry:
> 162.83 554 spam
> I am guessing this is blocking the entire class b (which is fine)
Pretty heavy handed, but it is your server...
> I checked to make sure its configured in main.cf and I see it listed
*Assuming* (all I can do since you didn't follow instructions and
provided copy/paste from main.cf instead of output of postconf -n) that
this is indeed what you are using...
> smtpd_recipient_restrictions =
> check_client_access dbm:/etc/postfix/client_blacklist,
> check_sender_access hash:/etc/postfix/access,
> check_policy_service inet:127.0.0.1:12525,
Move this last one (reject_unauth_destination) up so it is just below
'permit_sasl_authenitcated' - this will prevent errors in any of your
maps from making you an open relay (thanks mouss), and prevent
unnecessary DNS queries on messages you will reject later anyway...
This is only effective in smtpd_data_restrictions (remove it or move it
This is really a bad idea - and will get you blacklisted in a worst case
scenario - unless you have an agreement with every server you will be
hammering with your verifications...