Olá pessoal depois de passar um bom tempo pesquisando nesta lista sobre o
uso do reject_sender_login_mismatch do postfix, não consegui fazer
funcionar.
De um tempo pra cá meu servidor tem sido inundado de spams e praticamente
todos com o remetente alterado, vi aqui mesmo na lista q é possivel resolver
com a configuração conjunta do reject_sender_login_mismatch e
smtpd_sender_login_maps. Assim sendo eu fiz o seguinte:
Criei o arquivo /etc/postfix/users.auth
isaac@meudominio isaac
E conforme meu main.conf abaixo declarei:
smtpd_sender_login_maps = hash:/etc/postfix/users.auth
smtpd_sender_restrictions = reject_sender_login_mismatch,
permit_sasl_authenticated, reject_non_fqdn_sender,
reject_unknown_sender_domain
smtpd_recipient_restrictions = permit_sasl_authenticated, permit_mynetworks,
reject_unauth_destination, reject_non_fqdn_sender,
reject_unknown_sender_domain, reject_sender_login_mismatch
O bloqueio funcionou, mas infelizmente não consigo mais enviar email de
jeito algum veja:
Sep 1 23:24:43 bn1 postfix/smtpd[23793]: NOQUEUE: reject: RCPT from
unknown[200.xxx.xxx.xxx]: 553 5.7.1 <is...@meudominio.com.br>: Sender
address rejected: not owned by user is...@meudominio.com.br; from=<
is...@meudominio.com.br> to=<isaac@meudominio> proto=ESMTP helo=<HOME>
veja que meu login esta igual ao meu from e nem pra mim mesmo eu consigo
enviar. Se puderem me ajudar ficarei muito grato.
Meu main.conf
#soft_bounce = no
queue_directory = /var/spool/postfix
command_directory = /usr/sbin
daemon_directory = /usr/libexec/postfix
mail_owner = postfix
#default_privs = nobody
myhostname = bn1.barreirasnet.com.br
message_size_limit = 18009654
mydomain = barreirasnet.com.br
#myorigin = $myhostname
myorigin = $mydomain
#inet_interfaces = all
#inet_interfaces = $myhostname
#inet_interfaces = $myhostname, localhost
mydestination = $mydomain, localhost.$mydomain, localhost, mail.$mydomain,
www.$mydomain, ftp.$mydomain, gol.inf.br, goodnet.psi.br, goll.com.br
#local_recipient_maps = unix:passwd.byname $alias_maps
#local_recipient_maps = proxy:unix:passwd.byname $alias_maps
#local_recipient_maps =
unknown_local_recipient_reject_code = 550
mailbox_size_limit = 102400000
#mynetworks_style = class
#mynetworks_style = subnet
#mynetworks_style = host
#mynetworks = 127.0.0.0/8
#mynetworks = $config_directory/mynetworks
#mynetworks = hash:/etc/postfix/network_table
relay_domains = $mydestination
#relayhost = $mydomain
#relayhost = [gateway.my.domain]
#relayhost = [mailserver.isp.tld]
#relayhost = uucphost
#relayhost = [an.ip.add.ress]
#relay_recipient_maps = hash:/etc/postfix/relay_recipients
#in_flow_delay = 1s
virtual_alias_domains = /etc/postfix/local-host-names
virtual_alias_maps = hash:/etc/postfix/virtusertable
alias_maps = hash:/etc/aliases
#alias_database = dbm:/etc/aliases
#alias_database = dbm:/etc/mail/aliases
#alias_database = hash:/etc/aliases
#alias_database = hash:/etc/aliases, hash:/opt/majordomo/aliases
#recipient_delimiter = +
#home_mailbox = Mailbox
#home_mailbox = Maildir/
mail_spool_directory = /var/spool/mail
#mailbox_command = /some/where/procmail
#mailbox_transport = lmtp:unix:/file/name
#mailbox_transport = cyrus
#fallback_transport = lmtp:unix:/file/name
#fallback_transport = cyrus
#fallback_transport =
#luser_relay = $u...@other.host
#luser_relay = $lo...@other.host
#luser_relay = admin+$local
###header_checks = regexp:/etc/postfix/header_checks
#Checagem do Corpo da Mensagem
###body_checks = regexp:/etc/postfix/body_checks
#fast_flush_domains = $relay_domains
#smtpd_banner = $myhostname ESMTP $mail_name
#smtpd_banner = $myhostname ESMTP $mail_name ($mail_version)
#local_destination_concurrency_limit = 2
#default_destination_concurrency_limit = 20
debug_peer_level = 2
#debug_peer_list = 127.0.0.1
#debug_peer_list = some.domain
maximal_queue_lifetime = 1d
debugger_command =
PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
xxgdb $daemon_directory/$process_name $process_id & sleep 5
sendmail_path = /usr/sbin/sendmail
newaliases_path = /usr/bin/newaliases
mailq_path = /usr/bin/mailq
setgid_group = postdrop
html_directory = no
manpage_directory = /usr/local/man
sample_directory = /etc/postfix
readme_directory = no
#disable_dns_lookups = no
disable_vrfy_command = yes
smtpd_sasl_auth_enable = yes
#smtpd_recipient_restrictions = permit_mynetworks
smtpd_sasl_security_options = noanonymous
#broken_sasl_auth_clients = yes
#smtpd_sender_login_maps = regexp:/etc/postfix/users.auth
smtpd_sender_login_maps = hash:/etc/postfix/users.auth
#smtpd_sasl_local_domain = $mydomain
strict_rfc821_envelopes = yes
smtpd_helo_required = yes
smtpd_sender_restrictions = reject_sender_login_mismatch,
permit_sasl_authenticated, reject_non_fqdn_sender,
reject_unknown_sender_domain, reject_unauth_pipelining,
hash:/etc/postfix/access
# reject_rbl_client relays.ordb.org,
smtpd_banner = $myhostname ESMTP
smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous
smtpd_sasl_authenticated_header = yes
smtpd_sasl_local_domain = $mydomain
broken_sasl_auth_clients = yes
smtpd_recipient_restrictions = permit_sasl_authenticated, permit_mynetworks,
reject_unauth_destination, reject_non_fqdn_sender,
reject_unknown_sender_domain, reject_unknown_recipient_domain,
reject_sender_login_mismatch, reject_invalid_hostname, reject_rbl_client
combined.njabl.org, reject_rbl_client bl.spamcop.net, reject_rbl_client
sbl-xbl.spmhaus.org
data_directory = /var/lib/postfix
Abraço a todos
_______________________________________________
Postfix-BR mailing list
Postfix-BR@listas.softwarelivre.org
http://listas.softwarelivre.org/mailman/listinfo/postfix-br
