[Postfixbuch-users] Verschicke Spams, Open relay?

Driessen driessen at fblan.de
Di Nov 16 14:52:27 CET 2010


On Behalf Of Susanne Kaufmann

Wo ist der Logfileauszug "normal" ohne debug 

> 
> Hier meine Konfiguration:
> 
> alias_database = hash:/etc/aliases
> alias_maps = hash:/etc/aliases
> always_bcc = admin at MEINEDOMAIN.de
> append_dot_mydomain = no
> biff = no
> bounce_template_file = /etc/postfix/bounce.de-DE.cf
> broken_sasl_auth_clients = yes
> config_directory = /etc/postfix
> content_filter = scan:MEINEIP:10025
> header_checks = regexp:/etc/postfix/maps/header_checks
> inet_interfaces = all
> mailbox_size_limit = 0
> message_size_limit = 104857600
> mydestination = xxx.stratoserver.net, localhost.stratoserver.net,

öhm stratoserver ???

standard = mydestination = $myhostname, localhost

> localhost
> myhostname = mail.MEINEDOMAIN.de

dig MEINEDOMAIN.de -t ANY

; <<>> DiG 9.7.1-P2 <<>> MEINEDOMAIN.de -t ANY
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 6918
;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 2

;; QUESTION SECTION:
;MEINEDOMAIN.de.                        IN      ANY

;; ANSWER SECTION:
MEINEDOMAIN.de.         86388   IN      A       212.227.175.109

Die gehört aber zu 1und1.

> mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128 MEINEIP
> myorigin = /etc/mailname
> readme_directory = no
> receive_override_options = no_address_mappings
> recipient_delimiter = +
> relayhost =
> sender_canonical_maps = mysql:/etc/postfix/vms-mysql_sender_canonical.cf

Adressumschreibung kann Empfängervalidierung kaputt machen

> smtp_bind_address = MEINEIP

Mit der richtigen IP könnte man verschiedenes von extern prüfen.  

> smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
> smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
> smtpd_enforce_tls = no
> smtpd_helo_required = yes

> smtpd_recipient_restrictions = reject_unknown_sender_domain,
> reject_unknown_recipient_domain,  permit_mynetworks,
> reject_unlisted_recipient, reject_non_fqdn_sender,
> reject_non_fqdn_recipient, reject_unlisted_sender,
> permit_sasl_authenticated, reject_invalid_hostname,
> reject_unauth_pipelining,reject_unauth_destination,
> reject_unauthenticated_sender_login_mismatch, check_sender_access
> mysql:/etc/postfix/vms-sender_access.cf, reject_rbl_client bl.spamcop.net,
> reject
> smtpd_sasl_auth_enable = yes
> smtpd_sasl_security_options = noanonymous
> smtpd_sender_login_maps = mysql:/etc/postfix/vms-senderlogin.cf
> smtpd_tls_auth_only = no
> smtpd_tls_cert_file = /etc/ssl/certs/smtpd.cert
> smtpd_tls_key_file = /etc/ssl/private/smtpd.key
> smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
> smtpd_use_tls = yes
> virtual_alias_domains =
> virtual_alias_maps = mysql:/etc/postfix/vms-forwardings.cf
> mysql:/etc/postfix/vms-email2email.cf
> virtual_gid_maps = static:5000
> virtual_mailbox_base = /home/vmail
> virtual_mailbox_domains = mysql:/etc/postfix/vms-domains.cf
> virtual_mailbox_maps = mysql:/etc/postfix/vms-mailboxes.cf
> virtual_transport = maildrop
> virtual_uid_maps = static:5000
> 

Die üblichen verdächtigen "Catch ALL" ?


Mit freundlichen Grüßen

Drießen

-- 
Software & Computer
Uwe Drießen
Lembergstraße 33
67824 Feilbingert
Tel.: +49 06708 / 660045   Fax: +49 06708 / 661397
-------------- nächster Teil --------------
Überprüft mit AntiVir MailGuard  v10.0.1.38 AVE 8.2.4.98 VDF 7.10.14.9


Mehr Informationen über die Mailingliste Postfixbuch-users