Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
From: Jose Ildefonso Camargo Tolosa (ildefonso.camargogmail.com)
Date: Wed Aug 11 2010 - 19:31:00 CDT
On Wed, Aug 11, 2010 at 7:50 PM, Christopher Adams <adamscagmail.com> wrote:
> Hello all,
> I am having a bit of a problem and I am not sure that it is specifically
> Postfix-related, but I'll give it a shot. Feel free to flog me or tell me to
> go away.
Ok: go away!
No, just kidding, read on.
> I am running Postfix 2.3 on a CentOS Linux server.
> I noticed on our firewall that there were constant connections from the
> machine running Postfix to addresses all over the world. The interesting
> thing is that the connection is using OpenDNS [220.127.116.11], a public DNS
> server. I do not use OpenDNS in my /etc/resolv.conf file (I have 2 other
> nameservers listed) and I don't know where it is coming from. Here is an
> Aug 11 16:01:25 swiki postfix/smtp: E38F8DB4CCB: to=<ysamo9099sx.cn>,
> relay=none, delay=30, delays=0/0/30/0, dsn=4.4.1, status=deferred (connect
> to sx.cn[18.104.22.168]: Connection timed out)
Can you post the other lines of this log (same ID: E38F8DB4CCB), where
there is the *from*, and see if the *from* is from your domain, if no:
maybe you are an open relay.
Also, take a look at your mail queue run: mailq
> If this is the appropriate place to post this question, can someone who
> knows more than me analyze this and come up with a theory as to what is
> going on?
Yes, it is, at least judging by the log entry you sent, that's a postfix log.
> Thanks for any help you might want to provide.