From: zen (no email)
Date: Mon Nov 01 2004 - 21:21:15 EST
Hello postfix-users,
sorry to bother you all again,
i did read the jimsum page, and i have implemented it.
but it seem all forge mail still delivered to my users.
here are my configuration. maybe one of you could point me ,
where i did wrong.
core#postconf -n
alias_database = hash:/etc/mail/aliases
alias_maps = hash:/etc/mail/aliases
allow_percent_hack = yes
allow_untrusted_routing = no
append_at_myorigin = yes
append_dot_mydomain = yes
body_checks = regexp:/etc/postfix/body_checks
bounce_size_limit = 65536
broken_sasl_auth_clients = yes
command_directory = /usr/sbin
config_directory = /etc/postfix
daemon_directory = /usr/libexec/postfix
debug_peer_level = 2
default_destination_concurrency_limit = 10
default_privs = nobody
disable_vrfy_command = yes
empty_address_recipient = MAILER-DAEMON
header_checks = regexp:/etc/postfix/header_checks
header_size_limit = 32768
home_mailbox = Maildir/
html_directory = no
in_flow_delay = 1s
inet_interfaces = all
invalid_hostname_reject_code = 501
local_destination_concurrency_limit = 6
local_recipient_maps = $alias_maps, unix:passwd.byname
mail_owner = postfix
mail_spool_directory = /var/mail
mailbox_command =
mailq_path = /usr/bin/mailq
manpage_directory = /usr/local/man
max_use = 10
message_size_limit = 15145728
mime_header_checks = regexp:/etc/postfix/mime_header_checks
mydestination = $myhostname, localhost, localhost.$mydomain
mydomain = xxx.com
myhostname = core.xxx.com
mynetworks = 127.0.0.0/8, 172.64.14.0/24
myorigin = $myhostname
newaliases_path = /usr/bin/newaliases
queue_directory = /var/spool/postfix
queue_minfree = 60000000
readme_directory = /usr/etc/postfix/README
relay_domains = $mydestinations; $mynetworks,
sample_directory = /usr/etc/postfix
sendmail_path = /usr/sbin/sendmail
setgid_group = postdrop
show_user_unknown_table_name = no
smtpd_banner = $myhostname ESMTP Checkpoint $mail_name (FreeBSD)
smtpd_data_restrictions = reject_unauth_pipelining, permit
smtpd_delay_reject = yes
smtpd_hard_error_limit = 25
smtpd_helo_required = yes
smtpd_recipient_limit = 128
smtpd_recipient_restrictions = permit_sasl_authenticated, permit_mynetworks,
reject_unauth_destination, reject_invalid_hostname,
reject_non_fqdn_sender, reject_non_fqdn_recipient,
reject_unknown_sender_domain,reject_unknown_recipient_domain, reject_unauth_pipelining,
reject_non_fqdn_hostname, check_sender_access hash:/etc/postfix/maps/freemail_access,
reject_unknown_sender_domain, check_sender_mx_access hash:/etc/postfix/mx_access,
reject_unknown_recipient_domain, check_recipient_mx_access hash:/etc/postfix/mx_access,
check_recipient_access pcre:/etc/postfix/recipient_checks.pcre,
reject_rbl_client relays.ordb.org, reject_rbl_client opm.blitzed.org,
reject_rbl_client list.dsbl.org, reject_rbl_client sbl.spamhaus.org,
reject_rbl_client cbl.abuseat.org,
reject_rbl_client dnsbl.njabl.org, reject_rbl_client ipwhois.rfc-ignorant.org,
reject_rhsbl_sender dsn.rfc-ignorant.org,
check_recipient_access hash:/etc/postfix/maps/recipient_access, permit
smtpd_restriction_classes = from_freemail_host,
smtpd_sasl_auth_enable = yes
smtpd_sasl_local_domain =
smtpd_sasl_security_options = noanonymous
smtpd_soft_error_limit = 10
smtpd_timeout = 360
soft_bounce = no
strict_rfc821_envelopes = yes
transport_maps = hash:/etc/postfix/maps/transport
unknown_address_reject_code = 450
unknown_client_reject_code = 450
virtual_alias_maps = mysql:/etc/postfix/mysql_virtual_alias_maps.cf
virtual_gid_maps = static:1005
virtual_mailbox_base = /home/virtual
virtual_mailbox_domains = mysql:/etc/postfix/mysql_virtual_domains_maps.cf
virtual_mailbox_maps = mysql:/etc/postfix/mysql_virtual_mailbox_maps.cf
virtual_minimum_uid = 1005
virtual_transport = virtual
virtual_uid_maps = static:1005
TIA
-- Best regards, zen mailto:
|
|
|