LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 08-18-2014, 02:40 AM   #1
sanjibgupta
Member
 
Registered: Apr 2003
Location: Kolkata
Posts: 215

Rep: Reputation: 30
Postfix-help


HI
I am running mailserver on RHEL5 with postfix-2.3.3-2.1.el5_2

Recently I have seen mail from other domains trying to get relay by my server show as connect from my localhost.local domain

[/var/log/mail log detail of one such connect]
Aug 18 10:56:00 mail postfix/cleanup[17132]: C714837D79E: hold: header Received: from mail.xxx.yyy.in (localhost.localdomain [127.0.0.1])??by mail.xxx.yyy.in (Postfix) with ESMTP id C714837D79E;??Mon, 18 Aug 2014 10:55:59 +0530 (IST) from localhost.localdomain[127.0.0.1]; from=<mai@marriott.net> to=<portalseguridad.org@gmail.com> proto=ESMTP helo=<mail.xxx.yyy.in>


How to I stop other domains to connect to my mailserver as mail.xxx.yyy.in (localhost.localdomain [127.0.0.1])??


Please help me to stop the spams that are using my domain
I am also attaching the postconf -n

#postconf -n
alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
command_directory = /usr/sbin
config_directory = /etc/postfix
daemon_directory = /usr/libexec/postfix
debug_peer_level = 2
disable_vrfy_command = yes
header_checks = regexp:/etc/postfix/header_checks
html_directory = no
inet_interfaces = all
local_recipient_maps =
mail_owner = postfix
mailbox_size_limit = 0
mailq_path = /usr/bin/mailq.postfix
manpage_directory = /usr/share/man
message_size_limit = 25600000
mydestination = xxx.yyy.in, mail.xxx.yyy.in
mydomain = xxx.yyy.in
myhostname = mail.xxx.yyy.in
mynetworks_style = subnet
myorigin = $mydomain
newaliases_path = /usr/bin/newaliases.postfix
queue_directory = /var/spool/postfix
readme_directory = /usr/share/doc/postfix-2.3.3/README_FILES
sample_directory = /usr/share/doc/postfix-2.3.3/samples
sendmail_path = /usr/sbin/sendmail.postfix
setgid_group = postdrop
smtp_generic_maps = hash:/etc/postfix/generic
smtpd_client_restrictions = reject_unknown_client
smtpd_delay_reject = no
smtpd_helo_required = yes
smtpd_helo_restrictions = permit_mynetworks,reject_invalid_hostname,reject_non_fqdn_hostname
smtpd_recipient_restrictions = permit_mynetworks, reject_unauth_destination,check_client_access hash:/etc/postfix/rbl_override,reject_rbl_client list.dsbl.org,reject_rbl_client sbl-xbl.spamhaus.org,reject_rbl_client cbl.abuseat.org,reject_rbl_client dul.dnsbl.sorbs.net
smtpd_sender_restrictions = hash:/etc/postfix/sender_access,reject_unknown_sender_domain,reject_non_fqdn_sender
unknown_local_recipient_reject_code = 550
virtual_alias_maps = hash:/etc/postfix/virtual
virtual_mailbox_limit = 0



Thanking you
Sanjib Gupta
 
Old 08-18-2014, 02:08 PM   #2
TB0ne
LQ Guru
 
Registered: Jul 2003
Location: Birmingham, Alabama
Distribution: SuSE, RedHat, Slack,CentOS
Posts: 22,069

Rep: Reputation: 5887Reputation: 5887Reputation: 5887Reputation: 5887Reputation: 5887Reputation: 5887Reputation: 5887Reputation: 5887Reputation: 5887Reputation: 5887Reputation: 5887
Quote:
Originally Posted by sanjibgupta View Post
HI
I am running mailserver on RHEL5 with postfix-2.3.3-2.1.el5_2 Recently I have seen mail from other domains trying to get relay by my server show as connect from my localhost.local domain

[/var/log/mail log detail of one such connect]
Aug 18 10:56:00 mail postfix/cleanup[17132]: C714837D79E: hold: header Received: from mail.xxx.yyy.in (localhost.localdomain [127.0.0.1])??by mail.xxx.yyy.in (Postfix) with ESMTP id C714837D79E;??Mon, 18 Aug 2014 10:55:59 +0530 (IST) from localhost.localdomain[127.0.0.1]; from=<mai@marriott.net> to=<portalseguridad.org@gmail.com> proto=ESMTP helo=<mail.xxx.yyy.in>

How to I stop other domains to connect to my mailserver as mail.xxx.yyy.in (localhost.localdomain [127.0.0.1])??
You've been working with Linux for eleven YEARS now, and have asked questions about email going back eight. The other questions you've asked about spam emails should have given you abundant information about how to harden your mail server. Putting "how to secure my linux postfix server" into Google pulls up over 800,000 hits, such as:
http://security-24-7.com/hardening-g...r-postfix-2-x/
http://askubuntu.com/questions/41834...-ubuntu-server
http://xmodulo.com/2014/01/secure-ma...ncryption.html
http://www.postfix.org/BASIC_CONFIGURATION_README.html

Did you try to look this up? Follow any of the easily-found guides? And Red Hat Enterprise is not free...if you're not paying for it, you should NOT be using it. They, too, have how-to guides that (since you are PAYING, right???), you have access to through their knowledgebase, and through their support. Did you ask Red Hat?
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
how to make postfix send email to another postfix in local network (LAN)? h4k33m Linux - Server 9 06-04-2015 05:33 PM
Postfix 2.6.6 postfix/cleanup and postfix/master errors Pummelmuffin Linux - Server 1 06-04-2013 06:28 AM
Postfix: postfix: fatal: chdir(/usr/libexec/postfix) Micro420 Ubuntu 2 07-13-2008 01:21 PM
Postfix error: /usr/lib/postfix/smtpd pid 7529 exit status 1 Chiragrs Linux - Networking 7 05-16-2008 01:42 AM
Postfix Configuration Question: Postfix server as a catch-all on office LAN enso491 Linux - Server 5 04-14-2008 05:35 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 03:19 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration