Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
08-02-2006, 12:06 PM
|
#1
|
Member
Registered: Feb 2005
Location: Cambs UK/San Diego US/Tijuana MX
Distribution: Slackware/Debian!
Posts: 53
Rep:
|
Postfix RBL Bounce Messages must die!
Is there a way to stop those darn rbl postfix bounce messages, most spam gets blocked using them and postfix sends each and every FAKE sender a message, useless... i get emails from diferent postmasters asking me to turn it off but i cant figure out how.. y tried softbounce but that didn't do it.
Any body know of a way to do it, do i have to change the error code or something for those rejects.
Cheers
Allan
|
|
|
08-02-2006, 03:11 PM
|
#2
|
Member
Registered: Jul 2004
Location: Sioux Falls, SD
Distribution: Debian, Ubuntu, Fedora, Red Hat
Posts: 69
Rep:
|
What's your main.cf file look like?
|
|
|
08-03-2006, 11:43 AM
|
#3
|
Member
Registered: Feb 2005
Location: Cambs UK/San Diego US/Tijuana MX
Distribution: Slackware/Debian!
Posts: 53
Original Poster
Rep:
|
Here it is ^_^ any help or any comment to optimize is welcome aswell
Quote:
## IDENTITY ##
mail_name = (CENSORED)
## ORIGIN ##
myorigin = /etc/mailname
mydomain = (CENSORED)
myhostname = (CENSORED)
mydestination = (CENSORED), localhost.localdomain, localhost
mynetworks = (CENSORED)
## INET ##
inet_interfaces = (CENSORED)
inet_protocols = all
## SMTP ##
smtpd_banner = (CENSORED) ( (CENSORED) [(CENSORED)] )
smtpd_delay_reject = yes
smtpd_helo_required = yes
smtpd_reject_unlisted_recipient = yes
smtpd_reject_unlisted_sender = no
smtpd_sender_login_maps = mysql:/etc/postfix/mysql-virtual_email2email.cf
## MISC ##
append_dot_mydomain = no
biff = no
recipient_delimiter = +
## REJECT CODES ##
unknown_local_recipient_reject_code = 450
## LIMITS ##
mailbox_size_limit = 0
qmgr_message_recipient_limit = 35000
qmgr_message_active_limit = 35000
## LOCAL ##
alias_maps = hash:/etc/postfix/maps/alias
## VIRTUAL ##
virtual_alias_domains =
virtual_alias_maps = mysql:/etc/postfix/mysql-virtual_forwardings.cf mysql:/etc/postfix/mysql-virtual_email2email.cf
virtual_mailbox_domains = mysql:/etc/postfix/mysql-virtual_domains.cf
virtual_mailbox_maps = mysql:/etc/postfix/mysql-virtual_mailboxes.cf
virtual_mailbox_base = /home/vmail
virtual_uid_maps = static:5000
virtual_gid_maps = static:5000
## VERIFY ##
address_verify_map = btree:/etc/postfix/maps/verify
## SASL ##
smtpd_sasl_auth_enable = yes
smtpd_sasl_authenticated_header = yes
smtpd_sasl_security_options = noanonymous
broken_sasl_auth_clients = yes
## TLS ##
smtpd_use_tls = yes
smtpd_tls_cert_file = /etc/postfix/smtpd.cert
smtpd_tls_key_file = /etc/postfix/smtpd.key
## SECURITY ##
disable_vrfy_command = yes
## DEBUG ##
show_user_unknown_table_name = no
# always_bcc=ham@(CENSORED)
## CHECKS ##
header_checks = regexp:/etc/postfix/maps/header_checks
mime_header_checks = regexp:/etc/postfix/maps/mime_header_checks
body_checks = regexp:/etc/postfix/maps/body_checks
## CONTENT FILTERS ##
content_filter = amavis:[127.0.0.1]:10024
receive_override_options = no_address_mappings
## RFC ##
strict_rfc821_envelopes = yes
## SMTPD RESTRICTIONS ##
smtpd_restriction_classes =
smtpd_client_restrictions =
smtpd_helo_restrictions =
smtpd_sender_restrictions =
smtpd_recipient_restrictions =
### CHECK FOR TRUSTED CONNECTION
###########################################################
permit_mynetworks,
### CHECK FOR TRUSTED USER
###########################################################
reject_authenticated_sender_login_mismatch,
permit_sasl_authenticated,
### DESTINATION CHECKS
###########################################################
reject_unauth_destination,
reject_unauth_pipelining,
check_recipient_maps,
### PRIMARY ACCESS CHECKS
###########################################################
check_client_access hash:/etc/postfix/maps/access_client,
check_helo_access hash:/etc/postfix/maps/access_helo,
check_sender_access hash:/etc/postfix/maps/access_sender,
check_recipient_access hash:/etc/postfix/maps/access_recipient,
### PRIMARY IDENTIFICATION FILTER CHECKS
###########################################################
reject_non_fqdn_sender,
reject_non_fqdn_recipient,
reject_unknown_sender_domain,
reject_unknown_recipient_domain,
warn_if_reject reject_unknown_address,
### MANUAL ACCESS CHECKS
###########################################################
check_client_access hash:/etc/postfix/maps/exception_client,
check_helo_access hash:/etc/postfix/maps/exception_helo,
check_sender_access mysql:/etc/postfix/mysql-access_sender.cf hash:/etc/postfix/maps/exception_sender,
check_recipient_access mysql:/etc/postfix/mysql-access_recipient.cf hash:/etc/postfix/maps/exception_recipient,
### RECIPIENT EXISTS
###########################################################
reject_unlisted_recipient,
### CLIENT BL CHECKS
###########################################################
### REVERSE CLIENT ADDRESS ###
reject_rbl_client sbl-xbl.spamhaus.org,
reject_rbl_client bl.spamcop.net,
reject_rbl_client list.dsbl.org,
# reject_rbl_client relays.ordb.org,
### REVERSE HOSTS CLIENT ###
reject_rhsbl_client sbl-xbl.spamhaus.org,
reject_rhsbl_client bl.spamcop.net,
reject_rhsbl_client list.dsbl.org,
# reject_rhsbl_client relays.ordb.org,
### SENDER BL CHECKS
###########################################################
### REVERSE HOSTS SENDER ###
reject_rhsbl_sender sbl-xbl.spamhaus.org,
reject_rhsbl_sender bl.spamcop.net,
reject_rhsbl_sender list.dsbl.org,
# reject_rhsbl_sender relays.ordb.org,
###########################################################
check_sender_access hash:/etc/postfix/maps/no_verify_sender reject_unverified_sender,
check_recipient_access hash:/etc/postfix/maps/no_verify_recipient reject_unverified_recipient,
###########################################################
permit_auth_destination,
reject
smtpd_data_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
reject_unauth_pipelining,
permit_auth_destination,
reject
smtpd_etrn_restrictions =
permit_mynetworks,
reject
|
|
|
|
08-07-2006, 11:41 PM
|
#4
|
Senior Member
Registered: Dec 2003
Location: phnom penh
Distribution: Fedora
Posts: 1,625
Rep:
|
Postfix isn't doing it; it's Amavis. Since you're using an after-queue content filter, it's too late to reject spam.
Here are your choices:
1. You can bounce it, as you're doing, and cause a lot of backscatter.
2. You can discard it, and risk losing valuable mail by virtue of a false-positive.
3. You can classify it and deliver it.
The third choice is recommended.
|
|
|
08-08-2006, 11:59 AM
|
#5
|
Member
Registered: Feb 2005
Location: Cambs UK/San Diego US/Tijuana MX
Distribution: Slackware/Debian!
Posts: 53
Original Poster
Rep:
|
Well thats just nutty mate, lol amavis is set to differ it sends all spam and virii to a mail account, with no bouce ( i did find how to do it in amavis ) but the bounced messages that are getting sent are before they get to amavis with the tags like rbl your client blocked using blablabla blacklist. that postfix lets you customize. i only get bounces from the rbl's i have setup on postfix.
i just tested the server without amavis. i turned all content filters off but left rbl and i still get the bounces i told you about.
any thoughts?
all rbl's in SA/AMAVIS just lift up the score but they dont reject mail.
... can it be done at all?
cheers
|
|
|
08-08-2006, 01:54 PM
|
#6
|
Senior Member
Registered: Dec 2003
Location: phnom penh
Distribution: Fedora
Posts: 1,625
Rep:
|
Quote:
i turned all content filters off but left rbl and i still get the bounces i told you about.
|
Can you post your logs showing that mail is actually being bounced rather than rejected?
The reject_*_client rules reject mail; they don't bounce it.
|
|
|
All times are GMT -5. The time now is 11:16 AM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|