From: Jose Ildefonso Camargo Tolosa (ildefonso.camargogmail.com)
Date: Wed Aug 11 2010 - 19:31:00 CDT

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi!

On Wed, Aug 11, 2010 at 7:50 PM, Christopher Adams <adamscagmail.com> wrote:
> Hello all,
>
> I am having a bit of a problem and I am not sure that it is specifically
> Postfix-related, but I'll give it a shot. Feel free to flog me or tell me to
> go away.

Ok: go away!

No, just kidding, read on.

>
> I am running Postfix 2.3 on a CentOS Linux server.
>
> I noticed on our firewall that there were constant connections from the
> machine running Postfix to addresses all over the world. The interesting
> thing is that the connection is using OpenDNS [208.67.216.132], a public DNS
> server. I do not use OpenDNS in my /etc/resolv.conf file (I have 2 other
> nameservers listed) and I don't know where it is coming from. Here is an
> example:
>
> Aug 11 16:01:25 swiki postfix/smtp[7832]: E38F8DB4CCB: to=<ysamo9099sx.cn>,
> relay=none, delay=30, delays=0/0/30/0, dsn=4.4.1, status=deferred (connect
> to sx.cn[208.67.216.132]: Connection timed out)

Can you post the other lines of this log (same ID: E38F8DB4CCB), where
there is the *from*, and see if the *from* is from your domain, if no:
maybe you are an open relay.

Also, take a look at your mail queue run: mailq

>
> If this is the appropriate place to post this question, can someone who
> knows more than me analyze this and come up with a theory as to what is
> going on?

Yes, it is, at least judging by the log entry you sent, that's a postfix log.

>
> Thanks for any help you might want to provide.
>

No problem.

Ildefonso.

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]