[Postfixbuch-users] <localhost> Helo command rejected: host not found.
Sandy Drobic
postfixbuch-users at japantest.homelinux.com
Do Okt 23 22:31:42 CEST 2008
Dirk Hardt wrote:
> Sehr geehrte List und Profis.
>
> Seit geraumer Zeit, ballert mich mein Postfix mit folgenden Mail (etwa
> alle in der selben Art) zu.
>
> Transcript of session follows.
>
> Out: 220 smtp01.itss-hardt.local ESMTP Postfix (Debian/GNU)
> In: EHLO localhost
> Out: 250-smtp01.itss-hardt.local
> Out: 250-PIPELINING
> Out: 250-SIZE 2048000000
> Out: 250-VRFY
> Out: 250-ETRN
> Out: 250-STARTTLS
> Out: 250-AUTH PLAIN LOGIN
> Out: 250-AUTH=PLAIN LOGIN
> Out: 250-ENHANCEDSTATUSCODES
> Out: 250-8BITMIME
> Out: 250 DSN
> In: MAIL FROM:<postfixbuch-users-bounces at listen.jpberlin.de> BODY=8BITMIME
> SIZE=20199
> Out: 250 2.1.0 Ok
> In: RCPT TO:<dhardt at localhost>
> Out: 450 4.7.1 <localhost>: Helo command rejected: Host not found
> In: RSET
> Out: 250 2.0.0 Ok
> In: QUIT
> Out: 221 2.0.0 Bye
>
>
> Meine main.cf sieht so aus:
>
> alias_database = hash:/etc/aliases
> alias_maps = hash:/etc/aliases
> append_dot_mydomain = no
> biff = no
> body_checks = pcre:/etc/postfix/body_checks
> broken_sasl_auth_clients = yes
> config_directory = /etc/postfix
> content_filter = smtp-amavis:[localhost]:10024
> header_checks = pcre:/etc/postfix/header_checks
> home_mailbox = Maildir/
> inet_interfaces = all
> mailbox_size_limit = 0
> message_size_limit = 2048000000
> mydestination = smtp01.itss-hardt.local, localhost.itss-hardt.local,
> localhost
> mydomain = itss-hardt.local
> myhostname = smtp01.itss-hardt.local
> mynetworks = 127.0.0.0/8, 10.100.200.0/24
> myorigin = /etc/mailname
> notify_classes = bounce, delay, policy, protocol, resource, software
> recipient_delimiter = +
> sender_dependent_relayhost_maps = hash:/etc/postfix/sender_relayhost
> smtp_always_send_ehlo = yes
> smtp_sasl_auth_enable = yes
> smtp_sasl_password_maps = hash:/etc/postfix/smtp_relayhost_auth
> smtp_sasl_security_options = noanonymous
> smtp_sender_dependent_authentication = yes
> smtp_tls_session_cache_database = btree:${queue_directory}/smtp_scache
> smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
> smtpd_helo_restrictions = check_helo_access
> hash:/etc/postfix/helo_access permit_mynetworks,
> reject_invalid_hostname, reject_unknown_helo_hostname,
> reject_non_fqdn_hostname
lass smtpd_helo_restrictions leer:
smtpd_helo_restrictions =
> smtpd_recipient_restrictions = reject_unlisted_recipient,
> reject_unknown_sender_domain, reject_unknown_hostname,
> permit_sasl_authenticated, permit_mynetworks,
> reject_unauth_destination,
ergänze dafür dann sauber die smtpd_recipient_restrictions:
smtpd_recipient_restrictions =
reject_unlisted_recipient
permit_mynetworks
permit_sasl_authenticated
reject_unauth_destination
check_helo_access hash:/etc/postfix/helo_access
reject_invalid_helo_hostname
reject_unknown_helo_hostname
reject_non_fqdn_helo_hostname
reject_unknown_sender_domain
Das sollte verhindern, dass du dir weiterhin in den Fuß schiesst.
> smtpd_sasl_auth_enable = yes
> smtpd_sasl_local_domain =
> smtpd_sasl_path = private/auth
> smtpd_sasl_security_options = noanonymous
> smtpd_sasl_type = dovecot
> smtpd_tls_auth_only = no
> smtpd_tls_cert_file = /etc/ssl/certs/ssl-cert-snakeoil.pem
> smtpd_tls_key_file = /etc/ssl/private/ssl-cert-snakeoil.key
> smtpd_tls_received_header = yes
> smtpd_tls_session_cache_database = btree:${queue_directory}/smtpd_scache
> smtpd_use_tls = yes
>
>
> Wo liegt der Hund begraben und was ist "totale" Scheiße an der Konfig.
Kommt etwas auf deine Bedürfnisse an. Mit den notify_classes hast du
vermutlich keinen direkten Zugang vom Internet auf den Postfix, oder?
--
Sandy
Antworten bitte nur in die Mailingliste!
PMs bitte an: news-reply2 (@) japantest (.) homelinux (.) com
Mehr Informationen über die Mailingliste Postfixbuch-users