Re: rejecting domains

From: Ralf Hildebrandt (no email)
Date: Mon Jul 01 2002 - 07:41:46 EDT

Next message: (no email): "Re: source ip for outgoing connections"
Previous message: Phil Howard: "Re: virtualizing local users"
Maybe in reply to: Ralf Hildebrandt: "Re: rejecting domains"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

On Mon, Jul 01, 2002 at 07:34:47AM -0400, Landy Roman wrote:

> > Well, yes. How does fetchmail inject the mail?

The question still stands

> > From what IP?
The question still stands

You're using default restrictions:

smtpd_recipient_restrictions =
permit_mynetworks
check_relay_domains

Since fetchmail runs locally (within $mynetworks), the restriction
"permit_mynetworks" matches, and ALL MAIL COMING FROM $mynetworks is
allowed.

Ergo all mail injected via fetchmail on localhost is allowed, no
matter what you have in smtpd_sender_restrictions!

Solution:

smtpd_sender_restrictions =

smtpd_recipient_restrictions =
   check_sender_access hash:/etc/postfix/access
   permit_mynetworks
   check_relay_domains

-- 
Ralf Hildebrandt (Im Auftrag des Referat V A)   
Charite Campus Virchow-Klinikum                 Tel.  +49 (0)30-450 570-155
Referat V A - Kommunikationsnetze -             Fax.  +49 (0)30-450 570-916
Why you can't find your system administrators:
Convinience store across the street opened 
-
To unsubscribe, send mail to  with content
(not subject): unsubscribe postfix-users

Next message: (no email): "Re: source ip for outgoing connections"
Previous message: Phil Howard: "Re: virtualizing local users"
Maybe in reply to: Ralf Hildebrandt: "Re: rejecting domains"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Invaluement Anti-Spam DNSBLs