[Postfixbuch-users] Verschicke Spams, Open relay?
Driessen
driessen at fblan.de
Di Nov 16 14:52:27 CET 2010
On Behalf Of Susanne Kaufmann
Wo ist der Logfileauszug "normal" ohne debug
>
> Hier meine Konfiguration:
>
> alias_database = hash:/etc/aliases
> alias_maps = hash:/etc/aliases
> always_bcc = admin at MEINEDOMAIN.de
> append_dot_mydomain = no
> biff = no
> bounce_template_file = /etc/postfix/bounce.de-DE.cf
> broken_sasl_auth_clients = yes
> config_directory = /etc/postfix
> content_filter = scan:MEINEIP:10025
> header_checks = regexp:/etc/postfix/maps/header_checks
> inet_interfaces = all
> mailbox_size_limit = 0
> message_size_limit = 104857600
> mydestination = xxx.stratoserver.net, localhost.stratoserver.net,
öhm stratoserver ???
standard = mydestination = $myhostname, localhost
> localhost
> myhostname = mail.MEINEDOMAIN.de
dig MEINEDOMAIN.de -t ANY
; <<>> DiG 9.7.1-P2 <<>> MEINEDOMAIN.de -t ANY
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 6918
;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 2
;; QUESTION SECTION:
;MEINEDOMAIN.de. IN ANY
;; ANSWER SECTION:
MEINEDOMAIN.de. 86388 IN A 212.227.175.109
Die gehört aber zu 1und1.
> mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128 MEINEIP
> myorigin = /etc/mailname
> readme_directory = no
> receive_override_options = no_address_mappings
> recipient_delimiter = +
> relayhost =
> sender_canonical_maps = mysql:/etc/postfix/vms-mysql_sender_canonical.cf
Adressumschreibung kann Empfängervalidierung kaputt machen
> smtp_bind_address = MEINEIP
Mit der richtigen IP könnte man verschiedenes von extern prüfen.
> smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
> smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
> smtpd_enforce_tls = no
> smtpd_helo_required = yes
> smtpd_recipient_restrictions = reject_unknown_sender_domain,
> reject_unknown_recipient_domain, permit_mynetworks,
> reject_unlisted_recipient, reject_non_fqdn_sender,
> reject_non_fqdn_recipient, reject_unlisted_sender,
> permit_sasl_authenticated, reject_invalid_hostname,
> reject_unauth_pipelining,reject_unauth_destination,
> reject_unauthenticated_sender_login_mismatch, check_sender_access
> mysql:/etc/postfix/vms-sender_access.cf, reject_rbl_client bl.spamcop.net,
> reject
> smtpd_sasl_auth_enable = yes
> smtpd_sasl_security_options = noanonymous
> smtpd_sender_login_maps = mysql:/etc/postfix/vms-senderlogin.cf
> smtpd_tls_auth_only = no
> smtpd_tls_cert_file = /etc/ssl/certs/smtpd.cert
> smtpd_tls_key_file = /etc/ssl/private/smtpd.key
> smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
> smtpd_use_tls = yes
> virtual_alias_domains =
> virtual_alias_maps = mysql:/etc/postfix/vms-forwardings.cf
> mysql:/etc/postfix/vms-email2email.cf
> virtual_gid_maps = static:5000
> virtual_mailbox_base = /home/vmail
> virtual_mailbox_domains = mysql:/etc/postfix/vms-domains.cf
> virtual_mailbox_maps = mysql:/etc/postfix/vms-mailboxes.cf
> virtual_transport = maildrop
> virtual_uid_maps = static:5000
>
Die üblichen verdächtigen "Catch ALL" ?
Mit freundlichen Grüßen
Drießen
--
Software & Computer
Uwe Drießen
Lembergstraße 33
67824 Feilbingert
Tel.: +49 06708 / 660045 Fax: +49 06708 / 661397
-------------- nächster Teil --------------
Überprüft mit AntiVir MailGuard v10.0.1.38 AVE 8.2.4.98 VDF 7.10.14.9
Mehr Informationen über die Mailingliste Postfixbuch-users