Prev-20 Home Next-20 6 msg Mail gateway will not forward mail for multiple... 2 msg postfix mangles MESSAGE-ID when passing to clamd 8 msg Problems with either canonical_maps or alias_maps 16 msg catchall alias for wildcard subdomains? 12 msg Will/is there a way to prevent multiple attacks... 2 msg Expression Assistance 2 msg per user attachment filtering using header_checks Can I use reject_unlisted_sender for domain names \ ram (14 Jul 2007) . \ ram (14 Jul 2007) . . \ mouss (15 Jul 2007) 6 msg sending email by Relay through ISP smtp 2 msg duplicated messages with aliases. 4 msg On-line RFCs in HTML without spam? 2 msg local and remote users on same domain 11 msg Large messages being dropped, but not by messag... 2 msg .forward files question 1 msg How to drop mail to a domain... 8 msg mailbox_transport_maps as mysql table: some var... 1 msg RE: Ruleset for incoming e-mail addresses 5 msg custom queues 3 msg Auto reply when winmail.dat file found 3 msg relay_recipient_maps not working Prev-20 Home Next-20

Prev-Msg Prev-Thread Postfix-users Jul-2007 Next-Thread Next-Msg Subject: Re: Can I use reject_unlisted_sender for domain names Group: Postfix-users From: mouss Date: 15 Jul 2007 ram wrote: > On Sat, 2007-07-14 at 12:52 +0200, Robert Schetterer wrote: > >> -----BEGIN PGP SIGNED MESSAGE----- >> Hash: SHA1 >> >> ram schrieb: >> >>> Is there a feature like reject_unlisted_sender_domain >>> >>> We are providing smtpd services for our clients using smtp >>> authentication. Our clients are using multiple sender addresses >>> When any client desktop gets compromised we end up relaying a lot of >>> spams >>> >>> Can I have a list of domains , only those are allowed in from addresses >>> after amtp auth >>> >>> >>> Thanks >>> Ram >>> >>> >> do i.e >> >> smtpd_recipient_restrictions = reject_unknown_recipient_domain, >> reject_non_fqdn_recipient, >> >> smtpd_sender_restrictions = reject_unknown_sender_domain, >> reject_non_fqdn_sender, >> >> before >> >> permit_sasl_authenticated, >> permit_mynetworks, ( if you use nets for relay auth ) >> >> >> > > > > Can I use reject_unknown_sender_domain and use only a set of domains > from a file > > I dont want smtp-authed users to use any domain in their from id at > random. But I cant use a smtp login map . Because senders use far too > many from ids > > > > > Currently I use > > smtpd_recipient_restrictions = > check_recipient_access hash:/etc/postfix/badrecipients > check_recipient_access regexp:/etc/postfix/blockedrecipients > check_sender_access hash:/etc/postfix/access > check_sender_access hash:/etc/postfix/allowlist > permit_sasl_authenticated, > permit_mynetworks, > reject_unauth_destination > > smtpd_sender_restrictions = > check_sender_access regexp:/etc/postfix/badsenders > > > > > > > > > > to deny relay if the sender domain is not in a given list, you can use: smtpd_sender_restrictions = ... check_sender_access hash:/etc/postfix/sender_might_relay reject_unauth_destination == sender_might_relay: domain.example OK .domain.example OK (see parent_domain_matches_.... for the last entry). Note that: - the check is done under smtpd_sender_restrictions. putting it under smtpd_recipient_restrictions requires some work (restriction classes can help). - sender addresses are easily forged. but you get what you asked for ;-p you should scan relayed mail for viruses and for spam. you should also write scripts that watch the logs for abnormal behaviour... Prev-Msg Prev-Thread Postfix-users Jul-2007 Next-Thread Next-Msg

© 2004-2008 readlist.com