[Cialug] Postfix issue
L. V. Lammert
lvl at omnitec.net
Tue Jul 1 14:16:25 CDT 2014
> Is the connection authenticated or inside your allowed network? You list
> permit_sasl_authenticated before reject_invalid_hostname. The first
> matching test wins.
>
GOod point, .. but these are external incoming, and none are
authenticated.
> Be sure master.cf doesn't override main.cf for specific daemons. It's
> fairly common to provide IP-specific listeners, for example, no auth
> for SMTP from localhost that don't have the same restrictions.
>
Don't think any would override:
smtp inet n - n - - smtpd -o
content_filter=spamassassin
smtps inet n - n - - smtpd -o
smtpd_tls_wrappermode=yes -o smtpd_sasl_auth_enable=yes -o
smtpd_milters=unix:/tmp/clamav-milter.sock
smtpd_enforce_tls=yes -o smtpd_sasl_auth_enable=yes -o
smtpd_milters=unix:/tmp/clamav-milter.sock
smtp unix - - n - - smtp
> Also be sure it's actually not resolving the hostname; if you're pointed
> at the wrong DNS all hostnamesresolve (to an ad server).
>
Shouldn't be an issue, .. this uses the same nameservers as other mail
servers that properly reject invalid hostnames.
Thanks!
Lee
More information about the Cialug
mailing list