On Sat, 2008-09-06 at 08:27 -0400, Wietse Venema wrote: > Andrea Gozzi: > > Hi all. > > Some time ago I set up a spammers' trap in the way of a fake webmail > > service where they can register for a "free account". > > Up until now I was just saving their details (name,current email,ip,..) > > in a database and never sending them the "account" login information. > > Since many of the scammers that register are emailing me back with a > > request for such data, I thought of giving it to them, but not allowing > > their mail to be sent. > > Even better, all their mail should go to a local account so that I could > > check for "419" messages and spread the word around. > > > > To be clearer: I want to set up a domain, myfreemail.com, where the > > spammers will have their accounts. They will be able to log-in with a > > webmail client and receive correctly any email addressed to them (unless > > caught by SA, but that's another story). > > What they will not be able to do, is to send mail. Any email originating > > from the webmail for myfreemail.com will have to be diverted to > > [EMAIL PROTECTED] without telling the sender. To him everything will > > look like it went well and the delivery was successful. > > > > My question is: can I accomplish something like that with postfix (and > > my current virtual domain setup)? > > Depending on how your webmail injects mail into Postfix, and how > it can be distinguished from other mail: > man 5 access (see REDIRECT action) > man 5 header_checks (see REDIRECT action) > > Wietse
It works, thanks. I have one further question: how do I restrict access to postfix for any user with @myfreemail.com account only from localhost (where the webmail is running)? Andrea
