Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
how to configure my firewall so that only my actual mail server can send data out on port 25 where i have a lan and using nat method ...
help will be appreciated
will , am using fedora and sendmail , last days i found that am blocked and in senderscore.org i found that other domain such "1cho.com" and "el-puente.de" and "jemp.com.br" sends mail using my IP ,
now the goal is to stop them, i dont know how they could use my ip ???
and this prob is killing me , cause all the employees cant send mails for yahoo and hotmail and others ...
OK, well your ISP still may have this within their internet architecture... It is more something used by home users on dynamic IP addresses, but is still valid for businesses often. If your IP has been incorrectly blacklisted you can check it out at a site like this... http://www.spamhaus.org/lookup.lasso
Are you running an incoming mailserver as well? If so, have you checked if it is an open relay? If it's configured as an open relay, anyone could use your mailserver to send spam.
well those sites themselves don't look like spam senders... look like very genuine businesses, so they've been as done over as you by another real spammer. have you checked yourself for being an open relay? http://www.abuse.net/relay.html
Are we getting sidetracked here...? Do you still just want the answer to your initial question? it doesn't seem to bare any resemblance to where we've now ended up...
well spam will come in if it's spam for your users... so looking at the firewall, you've still not said what it is... is this sendmail box behind it? or is it it? if you wish to recieve mail then you're going to still need to allow inbound connections anyway, which won't affect your spam situation.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.