Linux - SoftwareThis forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I don't know postfix, but I have to ask: Does it, or any MTA, do rejection as described? Sending IPs do not have to have an MX record, AFAIK. MX records are for receiving IPs.
Certainly I reject many IPs, most by rejecting entire netblocks (don't try to email me from China), but my MTA's not doing it by itself.
I think we need to see some log entries, or configuration files, or rejected IPs...I don't believe that these are "native" postfix rejections (but see my first sentence). I'm also wondering what the OP means by "malformed DNS"
reject_unknown_client_hostname
Reject the request when 1) the client IP address->name mapping fails, 2) the name->address mapping fails, or 3) the name->address mapping does not match the client IP address.
And I agree...
Quote:
Originally Posted by scasey
I think we need to see some log entries, or configuration files, or rejected IPs...I don't believe that these are "native" postfix rejections (but see my first sentence). I'm also wondering what the OP means by "malformed DNS"
Without seeing your postfix configuration and/or an actual example from your log (IP/host redacted if desired), it is impossible to provide a definitive answer.
Last edited by astrogeek; 07-11-2017 at 11:08 PM.
Reason: Complete thought previously interrupted...
I gave you the answer above.
You can find it in the postfix docs.
(I cant recall the page sorry)
If it's not impacting your users, and you're getting no complaints, then your issue is resolved.
One can stop a lot of spam by rejecting IPs with no rDNS, for example, but if your customer has lots of customers whose mail comes from servers with no rDNS, it doesn't work to use that for spam blocking.
The other downside of applying a rule as described is that you never know what email is being rejected, so you don't know if it's important. I found out about my customer's customers because blocking email with no rDNS caused almost all their customer's email to BOUNCE, causing them to complain to my customer, who then complained to me.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.