postfix - how to block forged sender e-mail addresses
Linux - ServerThis forum is for the discussion of Linux Software used in a server related context.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
postfix - how to block forged sender e-mail addresses
Hi there,
I've managed to get rid of most of the spams using different postfix restrictions.
There are a lot of spams with the sender from one of my domains.
I'm using virtual domains.
How can I block e-mails that are coming from a remote smtp server and the sender belongs to one of the virtual domains?
If you administer the DNS server that resolves your domains you could use SPF to restrict who can send using your domain.
There are situations where this won't work though so it's worth reading the docs first, although it's possible I've just done it wrong. My setup where my external DNS is at dyndns.com doesn't work for me.
ok, but there isn't something more simple. Maybe a postfix restriction that denies e-mails from remote smtp servers if the sender belongs to a local domain?
If you're talking about Backscatter spam (where your users are receiving bounces of spam because they are listed as the From field), there is a whole section about this on the Postfix site:
The risk with stopping remote domains sending as your domain is that mobile users who temporarily use a different SMTP server can be blocked. That's the reason for the SPF stuff, to allow specific domains to do this.
Between spam-assassin and clamav my users get almost no dodgy emails. Apart from checking the spam folders to train spam-assassin it's a low maintenance way to do it.
The risk with stopping remote domains sending as your domain is that mobile users who temporarily use a different SMTP server can be blocked. That's the reason for the SPF stuff, to allow specific domains to do this.
Between spam-assassin and clamav my users get almost no dodgy emails. Apart from checking the spam folders to train spam-assassin it's a low maintenance way to do it.
Ok, I understand that. In my particular case and on my server there are no mobile users. Every user is sending email using the same server.
I remember that I've read about a postfix restriction that blocks that kind of spams. But I can't remember and also I can't find it anymore.
Does the info here help at all? I did some searches for blocking domain spoofing with postfix, but since I'm not running postfix here I didn't know which would most likely be useful.
Does the info here help at all? I did some searches for blocking domain spoofing with postfix, but since I'm not running postfix here I didn't know which would most likely be useful.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
