Re: security hole -- anynomous user can send email from my postfix

From: mouss (no email)
Date: Mon Apr 02 2007 - 08:42:12 EDT

Next message: Mark Watts: "Re: error - directory:bss_file.c:122:fopen('/etc/postfix/cacert.pem','r'"

Previous message: JOYDEEP: "error - directory:bss_file.c:122:fopen('/etc/postfix/cacert.pem','r'"
Maybe in reply to: JOYDEEP: "Re: security hole -- anynomous user can send email from my postfix"
Next in thread: Charles Marcus: "Re: security hole -- anynomous user can send email from my postfix"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

JOYDEEP wrote:
> mouss wrote:
>
>> JOYDEEP wrote:
>>
>>> Exactly I am looking for such a solution.
>>> How can I use LDAP with postfix for user authentication
>>> or
>>> how to use the authentication u are asking for ?
>>>
>>>
>> start by adding
>> reject_unlisted_recipient
>> reject_unlisted_sender
>> at the top of your smtpd_recipient_restrictions.
>>
>
> I have done smtpd_recipient_restrictions = reject_unlisted_sender
>
> and now I can't send mail even as a valid user. have I done anything
> wrong here ?
> please suggest.
>

you need to put "back" the default restrictions:

smtpd_recipient_restrictions =
    reject_unlisted_sender
    reject_unlisted_recipient
    permit_mynetworks
    reject_unauth_destination

Next message: Mark Watts: "Re: error - directory:bss_file.c:122:fopen('/etc/postfix/cacert.pem','r'"

Previous message: JOYDEEP: "error - directory:bss_file.c:122:fopen('/etc/postfix/cacert.pem','r'"
Maybe in reply to: JOYDEEP: "Re: security hole -- anynomous user can send email from my postfix"
Next in thread: Charles Marcus: "Re: security hole -- anynomous user can send email from my postfix"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Invaluement Anti-Spam DNSBLs