Re: Constant connections from user unknown sending spam

5 msg	postconf not displaying all options
3 msg	empty_address_recipient not mapped by virtual o...
5 msg	stop smtp from anyone unless sasl auth?
2 msg	'piped' aliases & DSNs
12 msg	Strange From: in headers
5 msg	Mail - Access Denied
4 msg	qpsmtpd support service for postfix
39 msg	pix workaround broken?
2 msg	X-Original-To after bcc contains wrong address
8 msg	/usr/lib/sendmail delivery status/message id's ...
23 msg	Recommended Filesystems?
8 msg	Mail going to backup server instead main server
3 msg	outgoing rate control
5 msg	mail forwarding loop: how do I prevent this?
5 msg	Server relaying existing virtual mailbox
1 msg	how can I rewrite the Mail From

Constant connections from user unknown sending ...
\ Kevin Brown (21 Jul 2007)
. \ MrC (21 Jul 2007)
. \ MrC (21 Jul 2007)

2 msg	sporadic deferrals
8 msg	transport_maps: different behavior if discard o...
4 msg	Address verification questions

Subject:	Re: Constant connections from user unknown sending spam
Group:	Postfix-users
From:	MrC
Date:	21 Jul 2007

Kevin Brown wrote:

Let's keep replies also on-list so that others can benefit and assist.

> I am running postfix-2.2.7-4.2.cc
> I am not sure what you mean by:
> "smtp_*_restrictions"

See:

http://www.postfix.org/SMTPD_ACCESS_README.html#lists

> Is this a section of the main.cf ?

Yes - see man 5 postconf.

> From my understanding I am only restricting clients who are checking or
> sending mail right,

The description in man 5 postconf for reject_unknown_client is pretty clear.

http://www.postfix.org/postconf.5.html#reject_unknown_client_hostname

>I need to fix other servers who connect to mine to
> send mail to users on my domain

I don't understand this statement.

MrC

> kevin
>
>
> MrC wrote:
>> Kevin Brown wrote:
>>> I addded the lines with regard to require helo and thse lines at the
>>> end of /etc/postfix/main.cf
>>>
>>> #Something Kevin added
>>> reject_unknown_client = yes
>>
>> This is an smtpd_client_restrictions. It needs to be placed in one of
>> the smtp_*_restrictions. Note: In postfix >= 2.3, it has been renamed
>> reject_unknown_client_hostname.
>>
>> Since you have smtpd_delay_reject = yes, you can place it in
>> smtpd_client_restrictions, or smtpd_recipient_restrictions to have
>> more information presented in your logs.
>>
>> MrC
>>
>>> smtpd_delay_reject = yes
>>> smtpd_helo_required = yes
>>>
>>> But don't seem to be working.
>>> I run fedora 4 with postfix, spamassassin and clamav, amavis packages.
>>> Just my little dsl box.
>>>
>>> [root@xkmail ~]# postconf -n
>>> alias_database = hash:/etc/postfix/aliases
>>> alias_maps = hash:/etc/postfix/aliases
>>> bounce_queue_lifetime = 6h
>>> broken_sasl_auth_clients = yes
>>> command_directory = /usr/sbin
>>> config_directory = /etc/postfix
>>> content_filter = mailprefilter
>>> daemon_directory = /usr/libexec/postfix
>>> debug_peer_level = 2
>>> html_directory = no
>>> local_recipient_maps =
>>> luser_relay =
>>> mailbox_size_limit = 102400000
>>> mailbox_transport = mailpostfilter
>>> mailq_path = /usr/bin/mailq.postfix
>>> manpage_directory = /usr/share/man
>>> message_size_limit = 102400000
>>> message_strip_characters = \0
>>> mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain
>>> mynetworks = 127.0.0.0/8, 192.168.1.0/24
>>> newaliases_path = /usr/bin/newaliases.postfix
>>> recipient_delimiter = +
>>> sendmail_path = /usr/sbin/sendmail.postfix
>>> setgid_group = postdrop
>>> smtpd_delay_reject = yes
>>> smtpd_helo_required = yes
>>> smtpd_recipient_restrictions = permit_sasl_authenticated,
>>> permit_mynetworks, reject_unauth_destination
>>> smtpd_sasl_auth_enable = yes
>>> smtpd_sasl_local_domain = $mydomain
>>> smtpd_sasl_security_options = noanonymous
>>> smtpd_tls_cert_file = /etc/postfix/cert.pem
>>> smtpd_tls_key_file = /etc/postfix/key.pem
>>> smtpd_tls_loglevel = 1
>>> smtpd_use_tls = yes
>>> transport_maps = hash:/etc/postfix/transport
>>> unknown_local_recipient_reject_code = 550
>>
>>